Can you create a FreeBSD gateway, with private IPs, without NAT/divert ?
Adrian Chadd
adrian at freebsd.org
Sat Jun 7 16:56:25 UTC 2014
On 7 June 2014 12:48, None Secure via freebsd-net
<freebsd-net at freebsd.org> wrote:
> Yes, but in this case BOTH IPs of the gateway - both the external and the internal interfaces - are non-routable IPs, and so is my ISP cable modem.
>
> 192.168.1.1 is the cable modem
> 192.168.1.2 is external interface of my FreeBSD
> 10.10.10.1 is internal interface of my FreeBSD
>
> ... and my client (10.10.10.2) could not get through to the outside world using just plain old gateway_enable=yes. The configuration that always works with real IPs did not work with this.
>
> So, I followed the FreeBSD handbook which uses divert and natd, and it worked perfectly.
>
> No, I am not trying to access the internal systems from the outside world - I don't have a need for that.
>
> BUT, I am wondering if it is any way possible to run a gateway like this *without* divert and natd ?
There's inkernel natd these days.
There's also pf and ipfilter.
-a
More information about the freebsd-net
mailing list