ipnat 911
alexus
alexus at gmail.com
Tue May 19 17:46:07 UTC 2009
On Tue, May 19, 2009 at 1:36 PM, alexus <alexus at gmail.com> wrote:
> I'm running system with 2 jails
>
> host runs named
> 1st jail runs mail
> 2nd jail runs web
>
> jails needs to be able to reach out to outside world, for example mail
> server needs to be able to communicate with remote server
>
> for that i decided to use ipnat, here is rule i used
>
> map bce0 mx -> mx
>
> same goes for web
>
> but after activating these rules my host itself is not able to reach
> out to anything remote..
>
> --
> http://alexus.org/
>
the other thing is on host, and thats after few mintues i reload ipnat
dd# ipnat -s
mapped in 5022790 out 4034969
added 438863 expired 424203
no memory 0 bad nat 435
inuse 1256
orphans 0
rules 13
wilds 0
hash efficiency 66.56%
bucket usage 40.84%
minimal length 0
maximal length 7
average length 1.502
TCP Entries per state
0 1 2 3 4 5 6 7 8 9 10 11
0 0 0 0 5 1 1 0 1 0 50 15
dd#
--
http://alexus.org/
More information about the freebsd-questions
mailing list