Re: Using NetBSD as a travel router

To: D'Arcy Cain <darcy%NetBSD.org@localhost>, tech-net%NetBSD.org@localhost
Subject: Re: Using NetBSD as a travel router
From: Lloyd Parkes <lloyd%must-have-coffee.gen.nz@localhost>
Date: Thu, 25 Jan 2018 13:18:32 +1300

Hi D’Arcy,
It’s been a while since I have used IPF, so I’m not going to spot anything wrong in your config, but I can think of two suggestions.

> On 25/01/2018, at 12:20 PM, D'Arcy Cain <darcy%NetBSD.org@localhost> wrote:
> 
> ipf.conf:
> pass in from any to any
> pass out from any to any
> 
> ipnat.conf:
> map athn0 192.168.215.111/32 -> 0/32 proxy port ftp ftp/tcp
> map athn0 192.168.215.111/32 -> 0/32 portmap tcp/udp 10000:20000
> map athn0 192.168.215.111/32 -> 0/32

1) This ruleset looks a bit short to me. I could be mistaken, but every time I’ve thought “she’ll be right” with IPF, I’ve been wrong.

2) You can use the ipmon command to view real-time activity and unviewed recent activity. This is a superb utility.

Cheers,
Lloyd

References:
- Using NetBSD as a travel router
  - From: D'Arcy Cain
- Re: Using NetBSD as a travel router
  - From: is
- Re: Using NetBSD as a travel router
  - From: D'Arcy Cain
- Re: Using NetBSD as a travel router
  - From: Ignatios Souvatzis
- Re: Using NetBSD as a travel router
  - From: Thor Lancelot Simon
- Re: Using NetBSD as a travel router
  - From: David Young
- Re: Using NetBSD as a travel router
  - From: D'Arcy Cain
- Re: Using NetBSD as a travel router
  - From: D'Arcy Cain

Prev by Date: Re: network-related deadlock
Next by Date: Re: network-related deadlock
Previous by Thread: Re: Using NetBSD as a travel router
Next by Thread: Re: Using NetBSD as a travel router
Indexes:

Home | Main Index | Thread Index | Old Index