Hi, Just add the following lines on rc.conf to get your gateway up and running for the LAN:
gateway_enable="YES" natd_enable="YES" natd_flags="-n xxx" (you should replace xxx with your external interface name) firewall_enable="YES" firewall_script="/etc/ipfw.test" (this is to specify firewall script file (don't forget the natd rule on the firewall script). Regards --- Rodrigo Galiano Celestino Consultor de Internet & Sistemas Cellular: +244 923 57 79 72 -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of SigmaX asdf Sent: segunda-feira, 31 de Julho de 2006 8:39 To: Igor Robul Cc: freebsd-stable@freebsd.org Subject: Re: Gateway I take it firewall_type="OPEN" does not include the divert rule? The handbooks reads "The kernel source needs 'option divert' statement added to the other IPFIREWALL statements compiled into a custom kernel." Is this still the case in FreeBSD 6.1? Or am I covered by the IPDIVERT module or something? SigmaX On 7/29/06, Igor Robul <[EMAIL PROTECTED]> wrote: > > On Sat, Jul 29, 2006 at 01:42:41PM -0400, SigmaX asdf wrote: > > >^^^^^^^^^^^^^^^^^^^ > > >Should be natd_enable="YES" > > > > > > Heh; yeah, typo in my post. The file has it ok. Is there something I > have > > to do to specify the interfaces which have nat enabled? Does > natd_enable > > automatically forward any/every packet to any/every interface? > Personally I use ipfilter, but for ipfw/natd you need to specify > "divert" rule. You can find many examples, including ones in FreeBSD > handbook. > _______________________________________________ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]" _______________________________________________ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]"
