[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: IP forwarding of public IP with no NATing
Kevin Nottelling wrote:
> First let me apologize for the newbieness of this question. I'm trying to
> set up a 2.9 firewall router for machines on public IPs. I've done it with
> ease on computers with private IPs with an OpenBSD machine handling the
> This time, everthing must have public IPs, the external interface and all
> the machines behind the firewall. I suppose all I'm doing is creating a
> DMZ. In /etc/sysctl.conf I've already uncommented:
> And in rc.conf I have:
> The ipfilter rules are default right now which pass all.
> The internal NIC has a public IP, and connected to a hub. The protected
> machines have the internal NIC's IP as the default gateway. So far it's not
> Could someone please tell me what I'm missing?
Probably setting up proper static routes for all your networks (on *all*
If you don't know what I mean, send me the result of
"netstat -nrf encap"
a "tcpdump -pni <internal_interface>" would be interresting too.