If you wanted to try IPFW3 and NAT, nans_nans1 has done the experimentation for you, and wrote down the steps.
6 Replies to “IPFW3 and NAT”
Comments are closed.
A running description of activity related to DragonFly BSD.
A running description of activity related to DragonFly BSD.
If you wanted to try IPFW3 and NAT, nans_nans1 has done the experimentation for you, and wrote down the steps.
Comments are closed.
it is a in-kernel NAT
I’ve made some small changes and it worked like a charm (INT-NIC: bnx0, OUT-NIC: bnx1):
#!/bin/sh
kldload ipfw3_nat
kldload ipfw3_layer4
ipfw3 flush
ipfw3 add allow all via lo0
ipfw3 add allow all via bnx0
ipfw3 nat 1 config if bnx1
ipfw3 add nat 1 tcp via bnx1
ipfw3 add check-state
ipfw3 add deny tcp established
ipfw3 add allow all out via bnx1 keep-state
ipfw3 add deny all
>> it is a in-kernel NAT
>>
What does it mean?
Is pf also an in-kernel NAT in Dfly?
Nice,
I like your script, it is clean and clear.
the ipfw3 doc has been moved to https://www.dragonflybsd.org/docs/ipfw3/