On Wednesday 19 March 2008 03:02:59 pm Robert Huff wrote: > I'm trying to get NAT going, and apparently failing to > understand large parts of the concept, > 1) Per the handbook I have added > > options IPFIREWALL > options IPDIVERT > > to the kernel. > 2) The firewall is active, and configured so it works for the > machine itself. (Settings appended.) > 3) I need to do translation for all machines on 10.0.0.0/8. > 4) Working from the ipfw man page: > > ipfw add nat 10 all from any to any > > then > > ipfw nat 10 config log ip 10.0.0.0/8 > > Uh-oh: > > ipfw: bad ip address ``10.0.0.0/8'' > > OK, choose one machine. > > ipfw nat 10 config log ip 10.0.0.3 > > Accepted. > 5) Now, start natd. (natd.conf appended) > > /sbin/natd -l -f /etc/natd.conf > > Nope: > > natd: instance default: aliasing address not given > > > Huh? This has gotten a lot more coplicated since the last > time. :-P > > > > Robert Huff
I don't see much in the man page for ipfw concerning nat, certainly not the rules you are specifying. Try man natd -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB
Description: This is a digitally signed message part.