[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: ipnat/ipf and redirect still not working

miah wrote:
> I have one suggestion below, also.  Are you sure you are specifing the correct netmask ? is /32 right for your setup?

Yes. The situation is a machine with 2 NIC cards. The external has 2
addresses on it. One is for the usual services of the machine. The other
is for this redirect ONLY. If needed, I can redirect the entire port range
on that IP to the internal machine. I just need at least the mail and http
ports free. Take a closer look at the ifconfig data for the xl1 interface
and it might be more clear:

ifconfig xl1
      media: Ethernet 10baseT (10baseT half-duplex)
     inet netmask 0xffffffe0 broadcast
     inet netmask 0xffffffff broadcast

> -> Nope. here is what I have:
> ->
> -> rdr xl1 port 110 -> port 110 tcp
> -> rdr xl1 port 143 -> port 143 tcp/udp
> -> rdr xl1 port 25 -> port 25 tcp/udp
> -> rdr xl1 port 80 -> port 80
> ->
> -> map xl1 -> portmap tcp/udp 15001:19000
> -> map xl1 ->
> ->
> Try removing the last map out of here, as it will void the previous.

I did remove the last map. The following DOES show up in an ipnat -l when
I attempt to reach port 80 on the address in question:

RDR     80    <- -> 80    [

It still just hangs. I cannot tell whether anything is happening or not.
Sniffit does not register anything on the external interface when I
attempt to reach it. I don't know if that is because it is an alias or
not. Is there a better ethernet sniffer I could use that would help? I am
getting down to the wire on deadline, and I DON'T want to convert this
machine to linux (blech).


Jesse Trucks
Online Technical Producer
Madison Newspapers, Inc. - http://www.madison.com