Hi all, I've tried to switch my firewall last night from a Solaris 8 with ipf 3.4.35 to a brand new installed Solaris 9 with pfil 2.1.4 and ipf 4.1.3. I've modified a little bit the configuration but it doesn't work.
Here is my ipnat.conf file: #---------------------------------------------------------------# # Any packet from 172.17.2.0/24 (internal network) to sppp0 # (Internet) do NAT on it and say it's from 0/32. #---------------------------------------------------------------# # map sppp0 172.17.2.0/24 -> 0/32 proxy port ftp ftp/tcp map sppp0 0/0 -> 0/32 proxy port ftp ftp/tcp map sppp0 172.17.2.0/24 -> 0/32 proxy port 7070 raudio/tcp map sppp0 172.17.2.0/24 -> 0/32 portmap tcp/udp 60000:65000 map sppp0 172.17.2.0/24 -> 0/32 # # #---------------------------------------------------------------# # Any packet from 172.17.2.0/24 (internal network) to hme2 # (external network) do NAT on it and say it's from 0/32. #---------------------------------------------------------------# # map hme2 172.17.2.0/24 -> 0/32 portmap tcp/udp 60000:65000 map hme2 172.17.2.0/24 -> 0/32 # When I snoop on sppp0, I see 172.17.2.X IPs passing out ... Any known gotchas, bugs, whatever ??? I used this file on S8 with ipf 3.4.35 and it's working. Thank's. Simon-Bernard Drolet, Specialiste X inc., 514-247-6741. SXi at pppoe dot ca Certified Sun Technical Instructor Sun Certified System, Network and Security Administrator for Solaris
