[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: OBSD 3.1 NAT configuration question

To: misc_(_at_)_openbsd_(_dot_)_org
Subject: Re: OBSD 3.1 NAT configuration question
From: Philipp Buehler <OpenBSD_(_at_)_fips_(_dot_)_de>
Date: Mon, 8 Jul 2002 23:25:08 +0200
Mail-followup-to: misc_(_at_)_openbsd_(_dot_)_org
Reply-to: Philipp Buehler <OpenBSD_(_at_)_fips_(_dot_)_de>

On 08/07/2002, Raymond C. Rodgers <obsd_(_at_)_bbnk_(_dot_)_dhs_(_dot_)_org> wrote To misc_(_at_)_openbsd_(_dot_)_org:
> So what I'm wondering is if my internal NAT config line ("nat on dc0 from 
> 192.168.0.0/24 to any -> dc0") is essentially competing with the rdr lines 
> ("rdr on dc0 proto udp from any to dc0 port 7500:7800 -> 192.168.0.45 port 
> 7500:*" and "rdr on dc0 proto udp from any to dc0 port 22000 -> 
> 192.168.0.45 port 22000"). Perhaps packets are never getting as far as the 
> rdr lines?

Yes, NAT evaluation uses first-match-wins.
You can fine tune this w/ closer specification about who is
talking to who and 'no nat'. See nat.conf.5

ciao
-- 
Philipp Buehler, aka fips | sysfive.com GmbH | BOfH | NUCH | <double-p> 

#1: Break the clue barrier!
#2: Already had buzzword confuseritis ?

References:
- OBSD 3.1 NAT configuration question
  - From: Raymond C. Rodgers

Prev by Date: Re: /etc on a different partition
Next by Date: Re: /etc on a different partition
Previous by thread: OBSD 3.1 NAT configuration question
Next by thread: 3.0 --> 3.1
Index(es):
- Date
- Thread

Visit your host, monkey.org