Acess to virtual hosts are being blocked by natd/firewall
Sten Daniel Sørsdal
sten.daniel.sorsdal at wan.no
Tue Jul 8 08:58:26 PDT 2003
> Sten Daniel Sørsdal wrote:
> > Make sure that you are diverting the traffic from LAN to
> DMZ via NATD.
>
> I didn'tunderstand very well:
> ipfw is not doing this thrue the "OPEN" configuration by default ?
>
No.
in rc.firewall (line 124):
${fwcmd} add 50 divert natd all from any to any via ${natd_interface}
This line only NAT's traffic going in and out of your upstream interface.
in "OPEN" configuration it NATs the traffic from LAN and DMZ -to/from- internet.
Not between the LAN and DMZ area, which is what you need.
You could look into setting up your own little proxy DNS (such as pdnsd).
Add the servers to hosts file on your workstations, or make it NAT the way you want.
- Sten
More information about the freebsd-net
mailing list