<div>Hi<br></div><div><br></div><div>Is there a way to redirect ports
with ipfw3. The current setup allows hosts on the LAN to get to the
internet, but nothing gets in. I tried to redirect ports as it's done
with ipfw2 but this requires ipfw2 and natd enabled explicitly in the
kernel/ rc.conf.<br></div><div><br></div><div>My setup is as follows:<br></div><div><br></div><div> <b> ISP</b><br></div><div> |<br></div><div> emx0: 77.56.xxx.xx<br></div><div><b>Router1 (DragonFly BSD)</b><br></div><div> emx1: 10.0.0.1/24<br></div><div> |<br></div><div> 10.0.0.2/24<br></div><div> <b>Router2</b><br></div><div> 192.168.1.1<br></div><div> / | \<br></div><div> <b> LAN1</b><br></div><div><br></div><div>My /etc/rc.conf:<br></div><div>...<br></div><div>gateway_enable="YES"<br></div><div>ifconfig_emx0="DHCP"<br></div><div>ifconfig_emx1="10.0.0.1/24"<br></div><div>static_routes="lan1" <br></div><div>route_lan1="-net 192.168.0.0/24 192.168.1.1"<br></div><div>...<br></div><div><br></div><div>Firewall rules from DragonFly BSD Digest/ mailing list:<br></div><div><br></div><div>#!/bin/sh<br></div><div>kldload ipfw3_nat<br></div><div>kldload ipfw3_layer4<br></div><p>ipfw3 flush<br></p><div>ipfw3 add allow all via lo0<br></div><div>ipfw3 add allow all via emx1<br></div><div><br></div><div>ipfw3 nat 1 config if emx0<br></div><div>ipfw3 add nat 1 tcp via emx0<br></div><div><br></div><div>ipfw3 add check-state<br></div><div>ipfw3 add deny tcp established<br></div><div>ipfw3 add allow all out via emx0 keep-state<br></div><div><br></div><div>ipfw3 sync start centre<br></div><p>ipfw3 add deny all<br></p><div>-----<br></div><div><br></div><div>Nice Greetings. Daniel.<br></div><div class="protonmail_signature_block "><div class="protonmail_signature_block-proton protonmail_signature_block-empty"><br></div></div><div><br></div>