confusion configuring NAT
Josh Paetzel
josh at tcbug.org
Wed Mar 19 13:17:17 PDT 2008
On Wednesday 19 March 2008 03:02:59 pm Robert Huff wrote:
> I'm trying to get NAT going, and apparently failing to
> understand large parts of the concept,
> 1) Per the handbook I have added
>
> options IPFIREWALL
> options IPDIVERT
>
> to the kernel.
> 2) The firewall is active, and configured so it works for the
> machine itself. (Settings appended.)
> 3) I need to do translation for all machines on 10.0.0.0/8.
> 4) Working from the ipfw man page:
>
> ipfw add nat 10 all from any to any
>
> then
>
> ipfw nat 10 config log ip 10.0.0.0/8
>
> Uh-oh:
>
> ipfw: bad ip address ``10.0.0.0/8''
>
> OK, choose one machine.
>
> ipfw nat 10 config log ip 10.0.0.3
>
> Accepted.
> 5) Now, start natd. (natd.conf appended)
>
> /sbin/natd -l -f /etc/natd.conf
>
> Nope:
>
> natd: instance default: aliasing address not given
>
>
> Huh? This has gotten a lot more coplicated since the last
> time. :-P
>
>
>
> Robert Huff
I don't see much in the man page for ipfw concerning nat, certainly not the
rules you are specifying. Try man natd
--
Thanks,
Josh Paetzel
PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 195 bytes
Desc: This is a digitally signed message part.
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20080319/aa0ab85f/attachment.pgp
More information about the freebsd-questions
mailing list