nat

Good day, I have a FreeBSD 8.1 server installed and connected to network. (See topology screenshot). I need to masquarade the PC ip 192.168.1.2 on FreeBSD to 1.1.1.3, not to 1.1.1.2. On router the the source traffic must been from 1.1.1.3, not from 1.1.1.2. Is it possible? I tried with...

Hi folks, I'm somewhat of a *BSD novice, having rather used various builds for appliance devices, such as pfSense, opnSense, FreeNAS, etc. I've recently set up a new FreeNAS box from scratch, and built/building a jail for the express purpose of maintaining OpenVPN client connections, and then...

I'm trying to set up an Ampache media server at home and am taking the opportunity to learn how to use jails on FreeBSD. I'm trying to set up jails on a separate loopback network on the host and use the NAT features of PF to direct the traffic where it should go. I've tried following multiple...

I think that I'm being somewhat ambitious and I'm finding that I'm getting some horrible issues as a result. Firstly, what I'm trying to achieve. The way that I have tried to set up this network in the past was that the router was in the DMZ and that it passed some traffic (HTTP/S) through to...

I've been pulling my hair out over this for days! I have a VM, jails on a loopback interface and using IPFW to NAT the traffic. My findings show that it slows to a crawl. I've also tested with PF and it works like a charm. Network speeds within the jail are fine. I've tested this on Vultr...

When a T-Mobile "femto-cell" is trying to establish its IPv4, IPSEC tunnel to the T-Mobile provisioning servers, the 4640-byte return packet is silently dropped by the in-kernel NAT, even though it "matches" the outbound packet from less than 100 ms prior. All other operations of the firewall...

Hello All, With all the fuzz and issues with security and privacy these days I decided to give it a go with a VPN, mostly for the fun and challenge. I am partially done with a scenario that sounds very typical these days, although it is not necessary plain vanilla. The overall idea is...

Hello all, I have been experimenting with running a project that works great on AMD64/X86 on an RPI3 B, and have had some hiccups with jails, and I am wondering if anyone has experienced anything similar, and has any idea as to the cause. I've noticed the standard method of NATting jails on a...

I have spent days trying to get what I thought should be a simple set of ipfw nat rules set up. With less than zero success. I have read the documentation and scoured the web, and I assume I am just missing something. Scenario: I have one NIC card with four public IPs. I am running a bunch...

Hi I'm trying to set up a miniDLNA server inside a jail. When it's inside a jail, my LAN clients cannot access it. But if miniDLNA is installed outside of the jail, my LAN clients can successfully access it. My jail has it's private IP (192.168.60.3) address on host's lo1 interface. I then...

I'm attempting to use relayd to act as an extremely simple load-balancer between two machines, however all 3 machines are on entirely different public networks. However, it seems that relayd is just creating a rdr rule in pf, not a nat rule as well, so the packet is redirected but maintains...

Hi There is a case: - HQ with fixed white IP - Site with dynamic gray IP behind NAT (!!!) Need to setup IPSec VNP LAN-LAN to connect site to HQ. I've tried Racoon and succeded with establishing IPSec connection, but LAN-LAN connection wasn't established. The same with StrongSwan - I can see...

I need to modify the NAT on the vpn server which is a FreeBSD 11.1-STABLE #0 r324546 raspberry Pi 2. It seems not to have iptables command. root@rpi2:~ # iptables -I FORWARD -i tun0 -o ue0 -s 10.8.0.0/24 -m conntrack --ctstate NEW -j ACCEPT iptables: Command not found. when I try to install it...

Hello forum. This is a bit of a long shot and I don't have much useful diagnostic information to provide, but I'm otherwise running out of ideas. At home, I have replaced my ISP-supplied VDSL router with a bridging modem and a FreeBSD host running pf. I have a very simple ruleset which NATs...

There is a network topology which cannot be changed/altered as following: [FILESERVER]---192.168.254.1---->|======| [LANPC1]--------192.168.254.x---->| SWITCH |<--192.168.254.254--[MODEM]--->INTERNET [LANPC2]--------192.168.254.x---->|======| The FILESERVER (FreeBSD 11.1-RELEASE) is running...

I'm running vm-bhyve on freebsd11.1. one IP on igb0. # ifconfig igb0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0 mtu 1500 options=2400b9<RXCSUM,VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCSUM,VLAN_HWTSO,RXCSUM_IPV6> ether 6c:ae:8b:60:07:ca hwaddr...

Good day! Please, help me understand, how setup FreeBSD 11-STABLE amd64 router with several ip addresses on external interface. I have: Provider give me subnet 1.1.1.2/24 gw 1.1.1.1 /etc/rc.conf # Assigned external IP addresses ifconfig_rl0="inet 1.1.1.2/24" ifconfig_rl0_alias0="inet...

Hi All! I need to redirect all dns queries to local dns server (unbound) on router with FreeBSD 11 amd + ipfw nat. re0 - intranet [192.168.0.1] alias on re0 for unbound [10.0.0.1] re1 - internet [a.b.c.d] I try in various ways: ${FW} fwd 10.0.0.1,53 all from 192.168.0.0/24 to not 10.0.0.1 53...

This is a PSA to save future travelers some angst. Specifically, TCP connections would stall randomly after transferring a modest amount of data (i.e. >5MB xfer per TCP stream). As mentioned in my Discussion post to the VMware Fusion Forums, after much consternation, hand-wringing, and...

Hello everyone. I have a Windows 10 Workstation where I run a FreeBSD 10.3 Guest server over VMWare 12. This FreeBSD VM is meant to run multiple Apache/PHP/Wordpress instances on multiple jails. The FreeBSD guest is bridged through the HOST Ethernet NIC, where the HOST has the IP...