Date: Thu, 05 Oct 2000 17:43:37 +0200 From: Luke Roberts <luke@roberts.nl> To: freebsd-questions@FreeBSD.ORG Subject: NATD reditect problems for traffic coming from TCP port 41 Message-ID: <5.0.0.25.2.20001005172033.00aaa4f0@pop.roberts.nl>
next in thread | raw e-mail | index | archive | help
Hi, I'm new to this list and hope I chose the correct list to send this question to. If I chose the wrong one please let me know where I should post this question. My problem: I had a FreeBSD 3.2 machine that used NATD and IPFW to act as a gateway to my cable modem for my small office network. All worked fine, including redirecting traffic from my bank (for telebanking). My bank initiates traffic during telebanking so I need to redirect some traffic from them. All traffic from the following IP numbers and ports would get redirected to a windows machine (192.168.0.8) running the banksoftware: 193.172.44.45 193.172.44.78 194.151.107.44 194.151.107.76 ports 41,42,62 and 63. I did this with the following /etc/natd.conf #natd.conf use_sockets same_ports yes dynamic yes redirect_port tcp 192.168.0.8:1024-10026 1024-10026 193.172.44.45:40-9042 redirect_port tcp 192.168.0.8:1024-10026 1024-10026 193.172.44.78:40-9042 redirect_port tcp 192.168.0.8:1024-10026 1024-10026 194.151.107.44:40-9042 redirect_port tcp 192.168.0.8:1024-10026 1024-10026 194.151.107.76:40-9042 # eof...................... I recently reinstalled the machine with FreeBSD 4.1 and noticed that incoming traffic from the bank's port 41 was not getting redirected by natd to 192.168.0.8 any more. Here's a sample from NATd's verbose output: IN [TCP] [TCP] 194.151.107.44:42 -> 213.73.148.57:1995 [TCP] 194.151.107.44:42 -> 192.168.0.8:1995 IN [TCP] [TCP] 194.151.107.44:41 -> 213.73.148.57:1998 [TCP] 194.151.107.44:41 -> 213.73.148.57:1998 As you see above, traffic from port 41 is not getting redirected. It is simply aimed at my 'outside' IP number 213.73.148.57 again. However traffic form port 42 is getting redirected. Also (not visable in above) traffic from port 62 and 63 is getting redirected correctly. And to top it off I have several ports redirected for machines running Napster and ICQ. Traffic from port 41 seems to be a culprit. 8-( I have tried everything I can imagine, including using redirect_proto and I have cvsup'ed and built FreeBSD 4.1.1-stable but the problem with traffic from port 41 remains. I read in the archives that newer versions of NATD use libalias. I haven't a clue what this means but is this the reason it doesn't work any more for me? If any body knows a solution, I would be realy pleased to hear from you! Thanks again, Luke luke@roberts.nl To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5.0.0.25.2.20001005172033.00aaa4f0>