https://www.opennet.ru/openforum/vsluhforumID1/82253.html Народ, кто нить разберался с синтаксисом NAT в ядре фри 7 (option FIREWALL_NAT)<br>как правильно записать нат для двух интерфейcов rl1 и rl0, надо чтоб rl1(LAN) маскировался rl0(INTERNET)<br> https://www.opennet.ru/openforum/vsluhforumID1/82253.html#1 Fri, 03 Oct 2008 13:04:20 GMT Вот что нашёл по етому поводу:<br><br> NAT, REDIRECT AND LSNAT<br> First redirect all the traffic to nat instance 123:<br><br> ipfw add nat 123 all from any to any<br><br> Then to configure nat instance 123 to alias all the outgoing traffic with<br> ip 192.168.0.123, blocking all incoming connections, trying to keep same<br> ports on both sides, clearing aliasing table on address change and keep-<br> ing a log of traffic/link statistics:<br><br> ipfw nat 123 config ip 192.168.0.123 log deny_in reset same_ports<br><br> Or to change address of instance 123, aliasing table will be cleared (see<br> reset option):<br><br> ipfw nat 123 config ip 10.0.0.1<br><br> To see configuration of nat instance 123:<br><br> ipfw nat 123 show config<br><br> To show logs of all the instances in range 111-999:<br><br> ipfw nat 111-999 show<br><br> To see configurations of all instances:<br><br> ipfw nat show config<br><br> Or a redirect rule with mixed modes could looks like:<br><br> ipfw nat 123 config redirect_addr 10.0.0.1 10