Re: NetBSD NAT and NPF

To: George <g.lister%nodeunit.com@localhost>
Subject: Re: NetBSD NAT and NPF
From: "Francisco Valladolid H." <ficovh%gmail.com@localhost>
Date: Tue, 10 Mar 2015 17:03:39 -0600

Hi

On Tue, Mar 10, 2015 at 3:42 PM, George <g.lister%nodeunit.com@localhost> wrote:
> Hello guys,
>
> I am trying to setup a gateway/firewall machine and I am not able to figure
> out why my NAT rules in NPF do not seem to work.
>
> I have recompiled the kernel with "options GATEWAY" and enabled in
> /etc/sysctl.conf ipv4 and v6 forwarding, is that enough or do I need to
> enable IPNAT ??? I think this is for IP Filter and I am trying to setup
> NPF...? I am confused.
>
> The problem I am having is that a machine which gets its IP from the gateway
> via DHCP cannot connect to anything on the net so no NAT. npfctl stats shows
> no NAT sessions either so I am not sure where my setup is falling apart...
>
Please read here:

http://netbsd.gw.com/cgi-bin/man-cgi?npf.conf++NetBSD-current

Basic NAT in NPF is done via map sentence;

map $ext_if dynamic 10.1.1.0/24 -> $ext_if


Regards

> Thanks in advance,
> George



-- 
Francisco Valladolid H.
 -- http://blog.bsdguy.net - Jesus Christ follower.

References:
- NetBSD NAT and NPF
  - From: George

Prev by Date: NetBSD NAT and NPF
Next by Date: Re: Bind ending up in Parked state.
Previous by Thread: NetBSD NAT and NPF
Indexes:

Home | Main Index | Thread Index | Old Index