Nat problem, nat and proxy_address at the same time.
From: Juhani Tali (juhani_at_kernel.ee)
Date: 09/27/04
- Previous message: Bjoern A. Zeeb: "Re: gif(4) & ipsec [was: ICMP_UNREACH_NEEDFRAG broken in -current]"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Mon, 27 Sep 2004 16:26:21 +0300 To: freebsd-net@freebsd.org
Hi
I am trying to use in Linux terminology "SNAT" and "DNAT" at the same time.
The result should be: client 192.168.1.9 sees instead of remote web
server 96.98 a remote (routed) web server 240.17
natd -port 8675 -alias_address 212.27.241.3 -proxy_rule port 80 server
212.27.240.17:80
ipfw add 125 divert 8675 ip from 192.168.1.9 to 194.106.96.98
ipfw add 126 divert 8675 ip from 212.27.240.17 to any
In the gw, tcpdump shows me
on the external interface traffic both ways, to and from 240.17 (the
"new" web server)
on the internal interface traffic only outgoing traffic towards 96.98
ipfw show
00125 102 5064 divert 8675 ip from 192.168.1.9 to 194.106.96.98
00126 36 2096 divert 8675 ip from 212.27.240.17 to any
So it seems that these (testing only) rules do get traffic and the
problem is in nat.
What might be the problem?
Juhani
_______________________________________________
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
- Previous message: Bjoern A. Zeeb: "Re: gif(4) & ipsec [was: ICMP_UNREACH_NEEDFRAG broken in -current]"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
|
