Re: NATD and Address Redirection

From: Yar Tikhiy (yar_at_comp.chem.msu.su)
Date: 07/26/03

  • Next message: Wouter Clarie: "Re: NATD and Address Redirection" 
    Date: Sat, 26 Jul 2003 11:42:39 +0400
To: Jim Durham <durham@jcdurham.com>

    On Fri, Jul 25, 2003 at 01:49:38PM -0400, Jim Durham wrote:
    >
    > The procedure we used was to alias a 2nd public address to the outside
    > interface and use a redirect_address statement in natd.conf to
    > redirect connections to the new public IP to the inside machine.

    Just a remark: If this 2nd public IP is already routed to your
    gateway, you don't need to add it as an alias for your gateway's
    outside interface. But you really need to if the latter interface
    is on a broadcast network and must do ARP to attract packets destined
    to the 2nd public IP specified to natd.

    > This doesn't seem to be symmetrical. You can ping the inside machine
    > from outside using the new address and if you connect outwards from
    > the inside machine, the outside world sees the connection as coming
    > form the new public IP. However, a test running VNC server on the
    > inside machine and connecting from outside does not work. You can
    > connect to the inside machine and it sees mouse and keyboard, but the
    > virtual screen does not work. It seems that the connection works
    > properly redirecting inward but not outward. VNC disconnects in about
    > a minute.

    Could you check if TELNET, HTTP, or SSH from the outside world to
    the inside machine works? The problem may have to do with VNC
    protocol peculiarities preventing it from working through NAT.
    (However, the VNC FAQ claims VNC will work through NAT.) 

    -- 
Yar
_______________________________________________
freebsd-hackers@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@freebsd.org"
  • Next message: Wouter Clarie: "Re: NATD and Address Redirection"

    Relevant Pages

    • NATD and Address Redirection
      ... interface and a private "LAN" address on the 2nd interface serving a ... group of windows machines on the LAN with private IPS. ... a test running VNC server on the ... It seems that the connection works ...
      (freebsd-hackers)
    • Re: Problem configuring NAT to share Internet Connection
      ... One of my NICs in the server connect to a DSL ... modem and it connects to internet. ... > interface, that connects to the DSL modem, LAN interface, that connects to ... >> 7.- To connect server to Internet, I create a new network connection. ...
      (microsoft.public.win2000.ras_routing)
    • Re: Long Time Samba No Work-Need Expert Help On Samba/Networking
      ... I can ping the WinXP and Ubuntu pcs very ... Yielding connection to IPC$ ... added interface ip=192.168.1.64 bcast=192.168.1.255 ... Default User Disk ...
      (Ubuntu)
    • Re: Site-to-Site VPN client routing question - clients at branch office not able to acce
      ... You can check this by making sure that the dd interface on the answering router has changed to connected status. ... Your DC might only have one NIC, but as soon as your VPN connection is made it has two IP addresses, so you get all sorts of problems. ... select the demand-dial interface from the dropdown list. ...
      (microsoft.public.windows.server.networking)
    • Re: TDBC documentation, examples, syntax?
      ... What I see in the TDBC API is a distinct, ... and one to close the connection. ... doing the same thing with SQL/CLI would require: ... At most I see one semi-explicit upper interface and one non- ...
      (comp.lang.tcl)