Hi all,
I have a simple firewall setup using FreeBSD 4.4-RELEASE
+ the speedtouch port (based on 20011007 release). I
want to add some NAT to this. My first attempts to do
this resulted in no packets going in or out. I think I
have a solution but am in need of a sanity check.
I'm asking here rather than on freebsd-questions 'coz
I'm more likely to understand any replies here ;).
Current (firewall only) setup goes like this:
machine boots
fxp0 comes up
/etc/usb_ppp (a la Tony Finch) start is run, which
- starts modem_run
- runs ppp -nat -unit0 -ddial adsl
- then when tun0 is up and has an outside IP, etc
I run my firewall script.
Now, can I get away with doing NAT with entries in
/etc/ppp/ppp.conf as
nat port tcp 10.0.1.3:80 80
nat port tcp 10.0.1.3:443 443
nat port tcp 10.0.1.4:25 25
.
etc.
.
as well as using ipfw? Or do I need to look at the
filter commands for /etc/ppp/ppp.conf too?
So that's the bit that needs to be sanity checked.
As an aside, it would be more satisfying to use
/usr/sbin/ppp -unit0 -ddial adsl
and have a line like
/sbin/ipfw add divert natd all from any to any via tun0
in my firewall script, OR
/sbin/natd -l -n tun0
with suitable natd commands instead. But I haven't found
a way to do this that works (by working I mean packets
are routed 'twixt fxp0 and tun0).
TIA,
Adam.
__________________________________________________
Do You Yahoo!?
Check out Yahoo! Shopping and Yahoo! Auctions for all of
your unique holiday gifts! Buy at http://shopping.yahoo.com
or bid at http://auctions.yahoo.com
Liste de diffusion modem ALCATEL SpeedTouch USB
Pour se d�sinscrire : mailto:[EMAIL PROTECTED]?subject=unsubscribe
