Hi all,
I am trying to use pf nat rules with pool support on FreeBsd 8.0, working
together with ipfw as the main firewall. According to the natting concepts i
faced in manuals and docs, nat concept is to map the source address to the
natted address when sending the packets from that source
Hi everyone. This is probably better suited for freebsd-pf@ but I'll
give it a go before spamming YAML.
I'm testing NAT on FreeBSD 8.1. My setup is very simple:
My workstation - { internal network switch } - FreeBSD 8.1routing
firewall with squid 3 - { switch going to Internet }
My pf
Hello,
I am looking to configure my FreeBSD 8.0 machine for the purpose specified in
the subject.
Let's say I have two NICs in my PC: ext_if (for wan/pppoe connection) and
int_if for my LAN.
How would you manage to get work NAT with pf using PPPoE from my ISP; I'd like
to use DHCP on my LAN.
On Tue, 27 Oct 2009 06:51:26 -0700 (PDT), Dánielisz László
laszlo_daniel...@yahoo.com wrote:
Hello,
I am looking to configure my FreeBSD 8.0 machine for the purpose specified in
the subject.
Let's say I have two NICs in my PC: ext_if (for wan/pppoe connection) and
int_if for my LAN.
How
On Tue, 27 Oct 2009 06:51:26 -0700 (PDT)
Dánielisz László laszlo_daniel...@yahoo.com wrote:
Let's say I have two NICs in my PC: ext_if (for wan/pppoe connection) and
int_if for my LAN.
How would you manage to get work NAT with pf using PPPoE from my ISP
As a start your pf.conf could look a
would you
manage to get work NAT with pf using PPPoE from my ISP; I'd like to
use DHCP on my LAN.
PPPoE is documented in the handbook, I'd suggest you set that up first
together with a simple pf firewall to secure the system. There are
plenty of howtos for PF+NAT+DHCP.
I would suggest you also run
Hi,
I would need some help in getting this working.
The idea is pretty simple, i have a box with 3 NICs; 2 for net pipes,
and one for LAN.
Routing and NAT works, however, i need that requests to u_ips always
get NATed through u_if, and everything else through ext_if.
As it is now, everything
Mel [EMAIL PROTECTED] writes:
I take it you mean gre(4), which defines two IP protocols. So your rules will
need to include proto gre or proto mobile to identify the traffic. Something
like:
nat on $wan_if proto gre from $int_if:network to any - ($wan_if)
and don't forget to include a
On Thursday 27 September 2007 02:47:14 Paul Fraser wrote:
I'd like to forward all incoming GRE traffic on the WAN link to a system
on the wired network. Could anyone advise how?
I take it you mean gre(4), which defines two IP protocols. So your rules will
need to include proto gre or proto
Hello list,
I've got a box serving as a router between a wired and wireless network,
as well as providing NAT services for a WAN link to the two
aforementioned systems.
I'd like to forward all incoming GRE traffic on the WAN link to a system
on the wired network. Could anyone advise how?
I
About Network Address Translation.
I need to create PF log file that has external and local IP address
mapping.
I need log file that has result like pfctl -ss command.
How to create it?
_
Express yourself instantly with MSN
chamnan chaladpat wrote:
About Network Address Translation.
I need to create PF log file that has external and local IP address
mapping.
I need log file that has result like pfctl -ss command.
How to create it?
From a bit of googling in the archives, I think the easiest way to do
/etc/pf.conf
exter_if = vr0
^^^
nat on $exter_if from $inter_if to any - $exter_if
^
Now look at man page about nat/rdr rule syntax:
nat-rule = [ no ] nat [ pass ] [ on ifspec ] [ af ]
[
hello to all the people, i'm trying for days to get work natting, but
nothing happens.
FreeBSD 6.2
/etc/rc.conf
gateway_enable = YES
ifconfig_vr0=inet 192.168.1.2 netmask 255.255.255.0
ifconfig_xl0=inet 192.168.1.3 netmask 0x
squid_enable=YES
---
/etc/pf.conf
exter_if = vr0
On Apr 26, 2007, at 11:35 AM, Miguel Alcántara wrote:
/etc/rc.conf
gateway_enable = YES
ifconfig_vr0=inet 192.168.1.2 netmask 255.255.255.0
ifconfig_xl0=inet 192.168.1.3 netmask 0x
squid_enable=YES
You're not going to have much luck trying to do NAT if both
interfaces are on the
I had all of this working with PPPoE + PF, but now i have a T-1
with several IPs all aliased off of the main.
pf is working finehowever, I now have lost NAT LOOPBACK.
What I need is a way to go from one LAN machine to the WAN and
loopback to the other LAN machine.
Since this 'just works'
Hi,
I have 5.4-RELEASE-p6 test router and I wanted to do all routing/fw
with pf, to learn more pf...
I have added to kernel options:
device pf
device pflog
device pfsync
options ALTQ
Setuped jails with 172.22.x.x address and local network I have
192.168.x.x addreses...
ifconfig rl0 is
dave wrote:
Hi,
I use to use ipf under pre-5.3. NOw i have switched to pf for various
reasons. I have not as of yet deployed it on my router, but i will be
doing so. In looking it over, i do not believe pf needs nat_enable it does
all it's nats within the pf.conf file.
HTH
Dave.
Why
Ok, I'm slowly coming out of the fog here, but it looks like I might
still have a way to go.
I finally found the part in the handbook that said I didn't have to
compile in the IPFW* and IPDIVERT configs into the kernel *UNLESS* I
wanted NAT. Well, I do, but I didn't comple the kernel with
Hi,
I use to use ipf under pre-5.3. NOw i have switched to pf for various
reasons. I have not as of yet deployed it on my router, but i will be doing
so. In looking it over, i do not believe pf needs nat_enable it does all
it's nats within the pf.conf file.
HTH
Dave.
On Monday 13 December 2004 02:35 pm, Louis LeBlanc wrote:
Still, I'm planning to migrate to pf, since it's supposed to be
better. It seems (from my murky understanding) like it would make
tricky NAT stuff easier, so there would be some benefits (battle.net,
here I come :).
Problem is, it
And are there any pf config generation pages out there yet?
Look at this:
http://www.onlamp.com/pub/a/bsd/2003/06/26/ssn_openbsd.html?page=1
Regards,
Mauricio
___
[EMAIL PROTECTED] mailing list
22 matches
Mail list logo
