[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ipfilter
Subject:    Re: Solaris 8 x86 and ipnat
From:       Jim Sandoz <sandoz () lucent ! com>
Date:       2001-04-27 15:24:10
[Download RAW message or body]


roland,

you're not insane.  ipf 3.4.17 as you rec'd it is broken for solaris,
both x86 and sparc.  in order to use 3.4.17, you must replace
the file solaris.c with the solaris.c from 3.4.16.  i know, i know.

jim



Roland Chan wrote:

> Hi All.
>
> I'm seeing some very strange behaviour with ipfilter 3.4.17 on Solaris 8
> x86 (patchrev 108529-08).
>
> Even though the ipf module is loaded, ipnat seems to be completely
> ineffective. Packets are passing from the private to the public
> interface without being translated. snoop shows the packets leaving the
> outbound interface with their un-NATed address intact.
>
> Additionally (although I'm not using packet filtering) only the outbound
> rules take effect. Inbound packet filtering rules that simply pass and
> log the packet do nothing, while identical rules on the outbound list
> do. There isn't even a peep in the debug output from ipmon.
>
> My ipnat.conf:
>
> map dnet0 172.31.1.100/32 -> 1.2.3.4/32 portmap tcp/udp 10000:20000
>
> Any help will be appreciated. I feel totally insane.
>
> Roland

[prev in list] [next in list] [prev in thread] [next in thread]