Displaying 20 results from an estimated 23 matches for "ipnat".
Did you mean:
inat
2003 May 31
3
Packet flow through IPFW+IPF+IPNAT ?
Hi.
On my FreeBSD 4.8 configured IPFW2+IPF+IPNAT and I use them all:
- IPFW - traffic accounting, shaping, balancing and filtering;
- IPFilter - policy routing;
- IPNAT - masquerading.
I want to know, how IP-packets flow through all of this components?
What's the path?
incoming: IPFW Layer2 -> IPFW&Dummynet -> IPNAT -...
2009 May 13
2
corssbow and virtualbox issues..
...gt; mtu 9000 index 4
inet 192.168.112.254 netmask ffffff00 broadcast 192.168.112.255
ether 2:8:20:fe:8a:63
VirtualBox machines are using bridged neworking, connecting to one of the virtual vnic2.
vnic2 is plumbed on the host machine, it has assigned IP and it''s up. Additionally I run ipnat
on my host machine (elsinore) for the VirtualBox machines. This all works brilliantly, my virutal mahines
can access the network, can see my host machine, can see each other.
vnic2 is using 192.168.112.254/24
Zone (called web) is using vnic1. vnic1 is configured to use 192.168.112.253.
I can a...
2009 Apr 17
3
Crossbow virtual router and firewall
I want to run a non-global zone as a virtual router and run ipnat inside the non-global zone, however, when I try to enable routing it can''t find route:default or network/ipfilter. I''m using exclusive IP inside the zones and using OpenSolaris 2008.11 build 110.
I''ve tried sparse root and whole root zones without success. I''ve...
2003 Aug 20
1
Strange fork-trlated problem
Hello!
This problem has been persisted on two different MBs (diffrent CPUs,
different memory), half dozen of different NICs, 4.7-RELEASE and
4.8-RELEASE.
Common router/NAT (ipnat, kld loaded) behaves very strangely after about
10-20 minutes of work. New processes doesn't create anymore, process trying
to fork looks in top having -20 PRI and "temp" STATE. I was unable to find
out what that state means. New TCP connections from internal networks fails
to create...
2003 Apr 30
6
how to configure a FreeBSD firewall to pass IPSec?
I have a FreeBSD box acting as a firewall and NAT gateway
I would like to set it up to transparently pass IPSec packets -- I have
an IPSec VPN client running on another machine, connecting to a remote network.
Is there a way to do this? I can't find any hints in the man pages.
2004 Mar 03
1
FreeBSD ipsec and NAT
...ernal addresses to first get translated and then routed through
the tunnel. But instead when I connect with my internal addresses they
get translated, but then try and use the conventional gateway on the
machine instead of picking up the ipsec policy.
If that makes sense... I am using FreeBSD, ipf, ipnat and racoon.
Any help appreciated
Simon
2003 May 11
1
No subject
...y:freebsd5.x/nat--------inner net
| | |
| | L- apache/php (lo_alias1)
| L------ mail server (lo_alias2)
L----------- djbdns (lo_alias3)
Any hints, do's and dont's ? what about natd/ipnat ? which is better for
dynamic rules ? Especially: how to manage that in conjunction with multiple
jails ??
TIA, Slim
2004 Apr 01
2
Need help with rate-limiting NTTP traffic
Howdy all,
I posted this message to the netfilter mailing-list and didn''t get much
response. I apologize if anyone here is getting this for a
second time.
Anyway, I recently migrated my firewall from a FreeBSD box running
ipfilter, ipnat and dummynet to a Gentoo Linux box running netfilter and
tc. I have to admit that I''m having problems visualizing tc in my head.
So, I was wondering if I could get an assist.
Basically, when I run my NNTP client, it uses as much bandwidth as it
can get its grubby paws on. I have a 3M...
2004 Dec 25
5
How to connect two Asterisks as secure as possible without too much additional bandwidth ?
Hi,
I plan to connect to remote Asterisk that will terminate calls to ISDN
primary channel. I'd certainly like to secure this type of service, so would
kindly ask for any advice on how to secure this authentication as much as
reasonably possible.
Since there is long IP route I guess VPN will take too much additional
bandwidth...
Regards,
Robert.
2003 Jun 07
1
Impossible to IPfilter this?
...her side being
taken over, so this does not help me here.
Any hints how to resolve this are welcome. I don't think this is a
general IPFilter problem, hence I'm asking on this mailing list rather
than that for IPFilter.
Thank you,
Lupe Christoph
PS: There was talk about the sequence IPFW/IPNat/IPFilter get invoked.
It would be interesting to put the IPSec code in this picture. Are
IPSec packets going through *any* of them? With/out GIF?
--
| lupe@lupe-christoph.de | http://www.lupe-christoph.de/ |
| "Violence is the resort of the violent" Lu Tze...
2005 May 11
3
icmp problem
hi i have a problem with my icmp, i have a router that
performs nat. i cannot ping to internet hosts from
more than one stations situated behind NAT at once. if
i want to ping from another station i have to stop the
ping that was initiated from the first host, and after
a few seconds i can ping from another station.i've
checked firewll and i have no ipfw rules that could
stop icmp traffic.
2003 Dec 19
6
Configuring JAIL to bind on lo0 interface
Hello,
I have configured jail for users with sshd ftpd and auth. I started this
jail on IP 127.0.0.10(there is an alias on lo0 interface), there was
not any bigger problem to start it. But i have a problem with internet in
this jail. I can log in to this jail through ssh or ftpd but i can't
connect to the internet. I try to set up some kind of nat but it doesn't
work.
Can anybody help me
2001 Apr 06
12
Help!!
HI,
I am working as research assistant at South dakota University, in Computing
Services Dept. Right now we are working on Suse Linux, We are trying to
configure Samba Server on a linux machine. But when we try to open the
file/folders in Windows NT machine. Then it ask for user name and Password.
Where the global parametrs are set to open to all and all password are set
to NO. Now I dont
2003 Aug 20
1
Strange fork-related problem: acutally, virus-related
...0, 2003 at 01:12:51PM +0400, tarkhil@over.ru wrote:
> > 10-20 minutes of work. New processes doesn't create anymore, process
trying
> > to fork looks in top having -20 PRI and "temp" STATE. I was unable to
find
>
> I've got infected computers in my network. When ipnat mapping
> table grew to
> 39000+ entries, described effect appeared.
>
> Anyway, it should not behave that way.
Should it? Worms are known to be a NAT killer on dedicated routing
platforms. I am
facing customers every other day complaining about their Cisco router
performance
which...
2003 May 12
0
Gateway config
...| | L- apache/php (lo_alias1)
>> |
>> | L------ mail server (lo_alias2)
>>
>> L----------- djbdns (lo_alias3)
>>
>> Any hints, do's and dont's ? what about natd/ipnat ? which is better for
>> dynamic rules ? Especially: how to manage that in conjunction with >multiple
>> jails ??
>
>Helps having a subject on these things, especially if a discussion gets
>brewing.
>
>I have yet to see any really good articles on the web concerning...
2003 May 22
0
VPN IPSEC WIRELESS
I am having problems in the implementation of a VPN, below made a project of my net:
INTRANET
(10.0.0.0/24)
|
10.0.0.5
xl0
NetBSD IPNAT ( map wi0 10.0.0.0/24 -> 192.168.213.10 )
wi0
192.168.213.10/30
|
|
Wireless
VPN
|
|
192.168.213.9/30
xl2
FreeBSD NATD ( divert natd all from any to any )
xl0
200.x.x.5/24
|
200.x.x.1/24
Router
|
|
INTERNET
NetBSD Node ( ipse...
2004 Jun 25
0
mpd configure and route issues
...5 dc0
x.x.0.208/28 link#2 UC 1 0 dc0
x.x.0.209 00:00:c5:94:ba:48 UHLW 3 0 dc0 1194
localhost localhost UH 0 0 lo0
y.y.1 link#1 UC 0 0 fxp0
Running ipfilter and ipnat, both of which work great. I have a rule set,
but for testing purposes here, until I get this working, I do a pass in/out
quick on all interfaces. ip.forward is on, and NAT is working. So as a
firewall and gateway, I'm good, just no joy with the VPN yet.
I will leave off most of the extra i...
2003 Aug 03
1
ipfw or ipf w/stateful behavior
Hi,
first i must tell you, that my english is not the best,
i hav learned my english from manpages and documentation.
Please excuse this.
I have setted up a Box w/FreeBSD 4.7-RELEASE for connecting
to the w3 through an DSL/ATM-Connection.
Now i know the stateful handling of firewall-rules under linux
with iptables.In the second i have understand that FreeBSD comes with the
netfilter-extensions.
2005 Oct 26
1
Error message with fbt::copen:entry probe
All,
The attached script is causing the following error message ...
bash-3.00# ./zmon_bug.d
dtrace: error on enabled probe ID 2 (ID 4394: fbt:genunix:copen:entry):
invalid address (0xfd91747f) in predicate at DIF offset 120
dtrace: error on enabled probe ID 2 (ID 4394: fbt:genunix:copen:entry):
invalid address (0xfef81a3f) in predicate at DIF offset 120
Any ideas?
thxs
Joe
--
2003 Jul 12
5
jails, ipfilter & stunnel
I'm setting up a server where I plan to use Jails to improve security
I also have installed and am configuring ipfilter. Here are my
questions:
Because I'm using Jails, I will have to have multiple ip aliases on the
network interface. I will use ipfilter to specify what can go to each
of the addresses. (e.g., allow only incoming to port 80 on the jail
running apache).
Another