natd redirected ports from LAN
asko
asko_nospam at ultrasoft.ee
Tue Nov 29 10:46:13 GMT 2005
Hi,
As you know, natd redirected ports in router from WAN to LAN work only
from outside.
http://lists.freebsd.org/pipermail/freebsd-questions/2003-August/015552.html
For example,
www.example.com has public IP - a.b.c.d
webserver is in LAN, 192.168.1.10
router is 192.168.1.1
#rc.conf
natd_enable="YES"
natd_flags="-f /etc/natd.conf"
natd_interface="fxp0"
gateway_enable="YES"
#natd.conf
use_sockets yes
same_ports yes
unregistered_only yes
redirect_port tcp 192.168.1.10:80 80
The query http://a.b.c.d:80 works from outside, but does not work from
inside (LAN).
One solution is redirecting local port to 192.168.1.10:80
# inetd.conf
www stream tcp nowait nobody /usr/local/bin/nc nc -w 3
192.168.1.10 80
and adding ipfw rule:
00040 fwd 192.168.1.1,80 tcp from 192.168.1.0/24 to a.b.c.d dst-port 80
It works, but it is not very elegant, because it involves user level
programs inetd and netcat. I'm searching for a better, faster solution..
Does it exist?
--
asko
More information about the freebsd-net
mailing list