openbsd-misc
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Ipnat problems

from [Nikolopoulos Chris] [Permanent Link][Original]
To: "'misc@openbsd.org'" <misc@openbsd.org>
Subject: Ipnat problems
From: Nikolopoulos Chris <Chris.Nikolopoulos@alter.gr>
Date: Wed, 28 Feb 2001 15:59:39 +0200
Sender: owner-misc@openbsd.org 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi all,

I have some problems with ipnat (I think).
The problem is that my firewall stops nat-ing my internal machines to
the internet after a while (let's say one week). I translate a C
class network to one internet IP address, with portmap, and ftp
proxy. Note that only my proxy and one ftp client is on this c class
subnet. Most internet connections are handled by my proxy(squid). The
problem stops after a ipnat file reload(and nat table reload)

The ipnat.rules file goes like this...
map xl1 10.1.50.0/24 -> xxx.xxx.xxx.xxx/32 proxy port 21 ftp/tcp
map xl1 10.1.50.0/24 -> xxx.xxx.xxx.xxx/32 portmap tcp/udp
10000:65000
map xl1 10.1.50.0/24 -> xxx.xxx.xxx.xxx/32

where xxx is my internet ip's.

Any advice?
Thanx.

Chris Nikolopoulos
Systems Administrator
Alter Channel S.A.


-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>

iQA/AwUBOpzoLPRXT16qE36AEQJTmwCdGE9tx34+BS96NADU/QuQwXxw5hQAn2Uo
WInSRB/Z+NH/UhDQO+Ix7/mL
=Td+K
-----END PGP SIGNATURE-----
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
  • Ipnat problems, Nikolopoulos Chris <=
Previous by Date:  IPSec question, Russell P. Sutherland
Next by Date:  Re: network problems "bad host (xl0) -can't resolve hostname: xl0", J.C. Roberts
Previous by Thread:  IPSec question, Russell P. Sutherland
Next by Thread:  ISAKMP Kind of working, some issues - HELP!, Brendan W. McAdams
Indexes:  [Date] [Thread] [Top] [All Lists]