John Murphy jfm at
Tue Apr 1 08:55:23 PST 2003

"John Meyer" <john at> wrote:

>add 00100 tcp from any to any
>When I disable that as well all seems to work well. It looks like the option
>in rc.conf firewall_type="/etc/firewall.ast" does not get interpreted

That rule should certainly have an 'action' keyword eg. allow.

Try 'add 100 allow tcp from any to any'.

>2nd Problem is I need to divert my public ip port 80 to a private ip port 80
>what are the steps in natd to follow without compromising my security on the
>private side.

That would require a rule with 'divert' as the action keyword.

man 8 ipfw for the details.


More information about the freebsd-questions mailing list