Good afternoon to all,
I've configured FreeBSD as default gateway for the network 10.31.0.0/16. All traffic is permitted but i need to NAT client sessions.
On FreeBSD I've configured vpnc reach the network 10.31.0.0/16 through a vpnc session (tun0).
This is my ipfw.rules configuration:
This is natd.conf:
This rc.conf
All protocols work correctly: ssl, rdp, http, icmp except https.
Every connection https seems to enter in a loop state even if the tcp connection is established. Is there something wrong in my configuration ?
Thank You for your help in advance,
Regards,
Fabio.
I've configured FreeBSD as default gateway for the network 10.31.0.0/16. All traffic is permitted but i need to NAT client sessions.
On FreeBSD I've configured vpnc reach the network 10.31.0.0/16 through a vpnc session (tun0).
This is my ipfw.rules configuration:
Code:
# nat the client from and to the network 10.31.0.0/16
ipfw -q add 1014 divert natd ip from any to 10.31.0.0/16 out via tun0
ipfw -q add 1015 divert natd ip from 10.31.0.0/16 to any in via tun0
# Allow everything within the LAN
ipfw -q add 2002 allow ip from any to any via em0
ipfw -q add 2003 allow ip from any to any via lo0
ipfw -q add 2004 allow ip from any to any via tun0
This is natd.conf:
Code:
#default instance
port 8668
interface tun0
same_ports
This rc.conf
Code:
firewall_enable="YES"
firewall_script="/etc/ipfw.rules"
gateway_enable="YES"
natd_enable="YES"
natd_flags="-m -s -f /etc/natd.conf"
All protocols work correctly: ssl, rdp, http, icmp except https.
Every connection https seems to enter in a loop state even if the tcp connection is established. Is there something wrong in my configuration ?
Thank You for your help in advance,
Regards,
Fabio.