Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 31 Jul 2006 10:01:24 +0100
From:      "Rodrigo Galiano" <rodrigo@liralink.com>
To:        "'SigmaX asdf'" <fydernix@gmail.com>, "'Igor Robul'" <igorr@speechpro.com>
Cc:        freebsd-stable@freebsd.org
Subject:   RE: Gateway
Message-ID:  <20060731090156.11E4743D49@mx1.FreeBSD.org>
In-Reply-To: <c04d7e300607310038s76646aa2h5ad86c95dbb0a700@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help 
Hi,

   Just add the following lines on rc.conf to get your gateway up and
running for the LAN:

gateway_enable="YES"
natd_enable="YES"
natd_flags="-n xxx" (you should replace xxx with your external interface
name)
firewall_enable="YES"
firewall_script="/etc/ipfw.test" (this is to specify firewall script file
(don't forget the natd rule on the firewall script).



Regards
---
Rodrigo Galiano Celestino
Consultor de Internet & Sistemas
Cellular: +244 923 57 79 72
 

-----Original Message-----
From: owner-freebsd-stable@freebsd.org
[mailto:owner-freebsd-stable@freebsd.org] On Behalf Of SigmaX asdf
Sent: segunda-feira, 31 de Julho de 2006 8:39
To: Igor Robul
Cc: freebsd-stable@freebsd.org
Subject: Re: Gateway

I take it firewall_type="OPEN" does not include the divert rule?
The handbooks reads "The kernel source needs 'option divert' statement added
to the other IPFIREWALL statements compiled into a custom kernel."  Is this
still the case in FreeBSD 6.1?  Or am I covered by the IPDIVERT module or
something?

SigmaX

On 7/29/06, Igor Robul <igorr@speechpro.com> wrote:
>
> On Sat, Jul 29, 2006 at 01:42:41PM -0400, SigmaX asdf wrote:
> > >^^^^^^^^^^^^^^^^^^^
> > >Should be natd_enable="YES"
> >
> >
> > Heh; yeah, typo in my post.  The file has it ok.  Is there something I
> have
> > to do to specify the interfaces which have nat enabled?  Does
> natd_enable
> > automatically forward any/every packet to any/every interface?
> Personally I use ipfilter, but for ipfw/natd you need to specify
> "divert" rule. You can find many examples, including ones in FreeBSD
> handbook.
>
_______________________________________________
freebsd-stable@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-stable
To unsubscribe, send any mail to "freebsd-stable-unsubscribe@freebsd.org"

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060731090156.11E4743D49>