-redirect_port problem

abdul freebsd at citizensbankng.com
Wed Apr 9 22:51:49 PDT 2003 

Hi Joshua.
Thanks for your response.
"-redirect_port tcp 128.1.100.139:8080" is what is not working. The site
"128.1.100.139"
is not accessible from outside, even if the redirect seems to be working
after refresh of natd (rebooting)
when I use a ps command to see what processes are running.

Thanks
Abdul

----- Original Message -----
From: "Joshua Lokken" <joshualokken at attbi.com>
To: "abdul" <freebsd at citizensbankng.com>
Cc: <freebsd-questions at freebsd.org>
Sent: Wednesday, April 09, 2003 10:18 PM
Subject: Re: -redirect_port problem


> * abdul (freebsd at citizensbankng.com) wrote:
> ==> I use a FreeBSD box (version 4.7) as my Internet Proxy machine. I
presently
> ==> use the natd daemon to redirect all HTTP
> ==>
> ==> traffic to our web server and POP/SMTP to our mail server. This works
well.
> ==> A portion of my rc.conf file is:
> ==>
> ==> natd_program="/sbin/natd"       # path to natd, if you want a
different one.
> ==> natd_enable="YES"                # Enable natd (if firewall_enable ==
YES).
> ==> natd_interface="tl0"               # Public interface or IPaddress to
use.
> ==> natd_flags=" -redirect_port tcp 128.1.100.139:80
> ==> 207.241.164.30:80 -redirect_port tcp 128.1.100.6:25 25 -redirect_port
> ==>
> ==> tcp 128.1.100.6:110 110 -redirect_port tc
> ==> p 128.1.100.7:80 80 "
> ==>
> ==> My Problem
> ==>
> ==> In addition to what I have above, I want to redirect all HTTP traffic
from a
> ==> particular external server (a public IP) to port
> ==>
> ==> 8080 of a local machine for our mobile banking software. So I modified
my
> ==> rc.conf as follows:
> ==>
> ==> natd_flags=" -redirect_port tcp 128.1.100.139:8080
> ==> 241.164.30:80     -redirect_port tcp 128.1.100.6:25 25
> ==>
> ==> -redirect_port tcp 128.1.100.6:110 110 -redirect_port tcp
128.1.100.7:80 80
> ==> "                   #
> ==> I have confirmed that can locally browse to the HTTP based software
running
> ==> on the local machine in question
>
> What haven't you confirmed?  There isn't a question here; what isn't
working?
> Can you not access the site from the internet?
>
> Also, it's not necessary, but I found it easier to keep track of and
change
> nat rules by creating /etc/natd.conf, putting my rules in that file, and
calling
> that from rc.conf :
>
> natd_flags="/etc/natd.conf"
>
> --
> Joshua
>
>

More information about the freebsd-questions mailing list