netbsd-help: Re: ipnat question ...

Subject: Re: ipnat question ...
To: Juan RP <jrp@hispabsd.org>
From: Manuel Bouyer <bouyer@antioche.eu.org>
List: netbsd-help
Date: 05/25/2003 15:09:23 
On Sun, May 25, 2003 at 12:57:30AM +0200, Juan RP wrote:
> 
> Hi, really I need help with that:
> 
> These are my networks:
> 
> 	 inet router
> 	( 192.168.0.1 )
> 	 10baseT	
> 	 | | 
> 	 | |_____________
> 	 Insomnio 	 Another box	
> 	 | |	 	 ( 192.168.0.5 )
> 	 |	 |			10baseT
> ___ |	|_________
> |	 |
> ex0 		 rtk0
> ( 192.168.0.2 ) ( 192.168.1.1 )
> 10baseT		100baseTX
> 			 | 
> 			 |
> 			 Nocturno
> 		 ( ex0 192.168.1.2 )	
> 			 100baseTX
> 
> These are the configurations of the devices of Insomnio:
> 
> ex0: flags=8b63<UP,BROADCAST,NOTRAILERS,RUNNING,PROMISC,ALLMULTI,SIMPLEX,MULTICAST> mtu 1500
> capabilities=7<IP4CSUM,TCP4CSUM,UDP4CSUM>
> enabled=7<IP4CSUM,TCP4CSUM,UDP4CSUM>
> address: 00:04:76:d4:87:f7
> media: Ethernet 10baseT
> status: active
> inet 192.168.0.2 netmask 0xffffff00 broadcast 192.168.0.255
> inet6 fe80::204:76ff:fed4:87f7%ex0 prefixlen 64 scopeid 0x1
> inet6 2001:618:4:1534:: prefixlen 64
> rtk0: flags=8b43<UP,BROADCAST,RUNNING,PROMISC,ALLMULTI,SIMPLEX,MULTICAST> mtu 1500
> address: 00:e0:7d:a2:20:3a
> media: Ethernet autoselect (100baseTX full-duplex)
> status: active
> inet 192.168.1.1 netmask 0xffffff00 broadcast 192.168.1.255
> inet6 fe80::2e0:7dff:fea2:203a%rtk0 prefixlen 64 scopeid 0x2
> bridge0: flags=41<UP,RUNNING> mtu 1500
> 
> The output of brconfig -a:
> 
> bridge0: flags=41<UP,RUNNING>
> Configuration:
> priority 32768 hellotime 2 fwddelay 15 maxage 20
> ipfilter disabled flags 0x0
> Interfaces:
> rtk0 flags=7<LEARNING,DISCOVER,STP>
> port 2 priority 128 path cost 55 forwarding
> ex0 flags=7<LEARNING,DISCOVER,STP>
> port 1 priority 128 path cost 55 forwarding
> Address cache (max cache: 100, timeout: 1200):
> 00:e0:7d:a2:20:3f ex0 462 flags=0<>
> 00:04:76:a5:ae:f9 ex0 172 flags=0<>
> 
> The ipnat.conf file:
> 
> map bridge0 192.168.1.0/24 -> 192.168.0.0/24
You can't use bridge0 as an interface for ipnat/ipf. You have to
use one of the real interface (probably ex0 in your case)
Also I don't understand what you're trying to do. 
You're mixing bridging, routing and NATing which, while being technically
possible, is a very weird setup.
-- 
Manuel Bouyer <bouyer@antioche.eu.org>
 NetBSD: 24 ans d'experience feront toujours la difference
--

AltStyle によって変換されたページ (->オリジナル) /