Re: Two natd daemons
Alexandr Lookoshkoff wrote: Hello freebsd-questions, I have gateway with two external links and want to some users using second link. How it can be done? Is it possible via two copyes of natd running? What you are asking involves making a routing decision based on the source IP (sometimes called Policy Based Routing or Source Based Routing, depending on the vendor). IP Routing decisions are typically based on the destination address, not the source. What you want is some mechanism that will make route decisions based on the source address (i.e. packets with a source address from network A get routed out of interface 1 to gateway 1, while packets from Network B get routed out of interface 2 to gateway 2). I haven't used ipfw/natd in years, so I honestly don't know if natd/ipfw will allow you to do what you want. However, I do know that Packet Filter (pf(4) ported over to FreeBSD from OpenBSD) will allow you to do this. Check out pf.conf(5)'s man page and do a search for route-to. You might want to check out Peter N. M. Hansteen's Firewalling with with OpenBSD's PF packet filter: http://www.bgnett.no/~peter/pf/en/long-firewall.html As well as the official user's guide: ftp://ftp.openbsd.org/pub/OpenBSD/doc/pf-faq.txt Good luck to you, -Ash ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Two natd daemons
Hello freebsd-questions, I have gateway with two external links and want to some users using second link. How it can be done? Is it possible via two copyes of natd running? -- WBR Alexandr Lookoshkoffmailto:[EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Two natd daemons
I am forwarding this from my ISP Email RoadRunner, however my primary address is [EMAIL PROTECTED] Regardless of blacklisting I feel it is important for questions to not remain unanswered. On 4/22/05, Alexandr Lookoshkoff [EMAIL PROTECTED] wrote: Hello freebsd-questions, I have gateway with two external links and want to some users using second link. How it can be done? Is it possible via two copyes of natd running? -- WBR Alexandr Lookoshkoffmailto:[EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions- [EMAIL PROTECTED] Unfortunately I am unable to reply to the mailing list as I am an avid GMail user and refuse to change that. You do not need to run two instances of natd, and instead can just have multiple NAT lines in whatever firewall/nat you are running. Do you plan on running IPFW, IPF, or PF? It may or may not be slightly different for each, as IPF uses ipnat.conf, etc. -- -Tomas Quintero Remove GMail from Blacklists ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
