Re: I want copy pf.conf from FreeBSD 8.2 to OpenBSD 5 and use it

[Gary]

On Nov 2, 2011, at 10:30 AM, Gholam Mostafa Faridi wrote:

 I want only do NAT with PF and I do not want block ports or other policy . I 
 want only PF for NAT.
 please help me to solve this problem.

If all you want is one-to-one NAT and no packet inspection or filtering, why do 
you need a firewall at all? It's not good practice for a bunch of desktop 
Windows OS systems but you might as well just assign them each a public IP. If 
it were me, I'd start looking for a different chat service or set up my own 
XMPP server and keep the Windows hosts out of public IP space..

-Gary

Re: I want copy pf.conf from FreeBSD 8.2 to OpenBSD 5 and use it

[Karl O. Pinc]

On 11/02/2011 12:30:37 PM, Gholam Mostafa Faridi wrote:
 Hi
 In work place , we have over 24 computer and all of them are windows
 and 
 , I have NAT server . this NAT server use FreeBSD 8.2 AMD 64 , and I
 use 
 PF for NAT with FreeBSD 8.2 . after many search in google , I find
 this 
 pf.conf

Have you looked at the pf faq at www.openbsd.org or the man page,
especially the Translation section?

I seem to recall simple nat examples that you could use
once you change the IP numbers/networks to the ones you're
using.

I don't understand your english but it sounds like you may
want match binat-to to get a 1-to-1 mapping between internal
and external IP numbers -- either assigned per individual ip
number, or with bitmask or perhaps with some other natting
method and sticky-address.

Karl k...@meme.com
Free Software:  You don't pay back, you pay forward.
 -- Robert A. Heinlein