IPFW portforwarding / kernel question
Dear FreeBSD addict, I am running FreeBSD 4.9-RELEASE on a machine with 4 ehternet devices. 192.168.1.1 is connected to my ADSL router. My FreeBSD machine nicely routs all traffic between the 4 devices. rl0 192.168.1.1/24 (WAN-side) rl1 10.0.10.1/24 (LAN) rl2 10.0.20.1/24 (LAN) rl3 10.0.30.1/24 (LAN) My wish is to forward all incoming tcp traffic that arrives on 192.168.1.1:4265 to 10.0.10.151:4265 in the local network. Question 1: Can somebody help me out with the right ipfw command to achieve this (or a link to where *forwarding* is explained). Question 2: Do I need to recompile my kernel with the IPFIREWALL_FORWARD option? My kernel is compiled with the following options: # options for IPFW / NATD options IPFIREWALL options IPFIREWALL_VERBOSE options IPFIREWALL_VERBOSE_LIMIT=10 options IPDIVERT ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: IPFW portforwarding / kernel question
Henk wrote: My wish is to forward all incoming tcp traffic that arrives on 192.168.1.1:4265 to 10.0.10.151:4265 in the local network. Question 1: Can somebody help me out with the right ipfw command to achieve this (or a link to where *forwarding* is explained). ipfw fwd 10.0.10.151 ip from any to 192.168.1.1 4265 If you do this, you also need to convince the machine at 10.0.10.154 to accept traffic addressed for 192.168.1.1, or you need to use NAT instead. Question 2: Do I need to recompile my kernel with the IPFIREWALL_FORWARD option? Yes. -- -Chuck ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: IPFW portforwarding / kernel question
I'd suggest using port forwarding with NATD instead since I'm assuming you are already running NAT between 192.168.1.1 and your ADSL public address. The natd man page covers port and address forwarding pretty well. On Sunday 22 August 2004 10:02 am, Henk wrote: Dear FreeBSD addict, I am running FreeBSD 4.9-RELEASE on a machine with 4 ehternet devices. 192.168.1.1 is connected to my ADSL router. My FreeBSD machine nicely routs all traffic between the 4 devices. rl0 192.168.1.1/24 (WAN-side) rl1 10.0.10.1/24 (LAN) rl2 10.0.20.1/24 (LAN) rl3 10.0.30.1/24 (LAN) My wish is to forward all incoming tcp traffic that arrives on 192.168.1.1:4265 to 10.0.10.151:4265 in the local network. Question 1: Can somebody help me out with the right ipfw command to achieve this (or a link to where *forwarding* is explained). Question 2: Do I need to recompile my kernel with the IPFIREWALL_FORWARD option? My kernel is compiled with the following options: # options for IPFW / NATD options IPFIREWALL options IPFIREWALL_VERBOSE options IPFIREWALL_VERBOSE_LIMIT=10 options IPDIVERT ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
