NAT trouble
Björn Lindström
bkhl at elektrubadur.se
Sun Aug 8 11:46:56 PDT 2004
"JJB" <Barbish3 at adelphia.net> writes:
> A new rewrite of the FreeBSD handbook firewall section is currently
> being made ready for update to the handbook. You can get an
> in-process copy from www.a1poweruser.com/FBSD_firewall/
>
> For more help post complete contents of your rc.conf, ppp.conf, ipfw
> rules, dmesg.boot, ppp.log, files along with description of how you
> are connected to the public internet.
Thanks you. Thanks to that page, I'm a bit closer to a solution, I
think.
I have arrived at the following ipfw.rules, based on the last example on
that page:
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ipfw.rules
Type: application/octet-stream
Size: 4752 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20040808/ebeb1b61/ipfw.obj
-------------- next part --------------
Here are the resulting output of 'ipfw list', for good measure:
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ipfw.list
Type: application/octet-stream
Size: 2306 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20040808/ebeb1b61/ipfw-0001.obj
-------------- next part --------------
The only significant changes I've made are to how DNS is allowed. It
would be nice to hear if those rules look ok.
Now, what that is missing is examples on how to get NAT port forwarding
working. I've been playing around with that, based on what I can figure
out from the natd man page, with no success.
Here are the rest of the relevant configuration/log files:
-------------- next part --------------
A non-text attachment was scrubbed...
Name: rc.conf
Type: application/octet-stream
Size: 715 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20040808/ebeb1b61/rc.obj
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ppp.conf
Type: application/octet-stream
Size: 233 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20040808/ebeb1b61/ppp.obj
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ppp.log
Type: application/octet-stream
Size: 440 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20040808/ebeb1b61/ppp-0001.obj
-------------- next part --------------
And here's the natd.conf file. Hopefully you can give me some pointers
on what's wrong with my port forwarding attempts from there.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: natd.conf
Type: application/octet-stream
Size: 86 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20040808/ebeb1b61/natd.obj
-------------- next part --------------
(I couldn't locate any dmesg.boot file.)
Thanks for all your help,
Bj?rn
More information about the freebsd-questions
mailing list