Return to BSD News archive
Path: euryale.cc.adfa.oz.au!newshost.carno.net.au!harbinger.cc.monash.edu.au!news.rmit.EDU.AU!goanna.cs.rmit.edu.au!news.apana.org.au!cantor.edge.net.au!news.teragen.com.au!news.access.net.au!news.mel.connect.com.au!munnari.OZ.AU!news.ecn.uoknor.edu!feed1.news.erols.com!howland.erols.net!rill.news.pipex.net!pipex!tank.news.pipex.net!pipex!news.utell.co.uk!usenet From: brian@shift.lan.awfulhak.org (Brian Somers) Newsgroups: comp.unix.bsd.freebsd.misc Subject: Re: IP Masquerading possible? Perhaps transparent proxies? Date: 4 Mar 1997 17:25:37 GMT Organization: Awfulhak Ltd. Lines: 41 Message-ID: <5fhluh$r24@ui-gate.utell.co.uk> References: <5f637n$n93@news.gvsu.edu> <5fgpbn$b7d$4@easystreet03> Reply-To: brian@awfulhak.demon.co.uk, brian@utell.co.uk NNTP-Posting-Host: shift.utell.net Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Newsreader: knews 0.9.8 Xref: euryale.cc.adfa.oz.au comp.unix.bsd.freebsd.misc:36526 In article <5fgpbn$b7d$4@easystreet03>, tedm@agora.rdrop.com (Ted Mittelstaedt) writes: > In article <5f637n$n93@news.gvsu.edu>, behrensm@river.it.gvsu.edu (Matt Behrens) says: >> >>Hi all, I'm torn. :) >> > >> >>Is there ANY way (perhaps version 3.0 of FreeBSD?) that I can get FreeBSD >>to do a functionally equivalent thing, both here and at work. Ideally, I'd > > IP masquerading is part of the kernel changes in version 2.2, install > the ipfw program and the /etc/sysconfig has entries on how to do it. > > FOr version 2.1.7 and lower, you have two choices: if you just need > masquerading behind a ppp interface, Charles Mott has a set of patches > and software up on his web site to do it at: > > http://www.srv.net/~cmott/alias.html > > otherwise if you need > network interface-to-interface translation you have to recompile the > kernel and add it in using software up on > > http://cheops.anu.edu.au/~avalon/ip-filter.html > > I'm facing the same problem myself, and I even tried out ipfilter, but > the ruleset language is awful. Also, I'd be concerned about putting > a lot of work into it and not being able to carry it forward to newer > versions of FreeBSD. I'm currently waiting for 2.2 to go gold. Also on Charles Motts site is the natd program (soon to be part of -current). It sits on an arbitrary IP or interface and does all the nice things that Charles Motts stuff does (using the same code). It's written by Ari Suutari <ari.suutari@ps.carel.fi>, and works with 2.2 and 3.0. -- Brian <brian@awfulhak.org> <brian@freebsd.org> <http://www.awfulhak.demon.co.uk> Don't _EVER_ lose your sense of humour !