Re: [Fwbuilder-discussion] FWD: [rand@meridian-enviro.com: Re: FTP proxy w/o NAT]

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

On Sunday, December 8, 2002, at 02:56  PM, Lupe Christoph wrote:
>
> This is a very simple config, so I'm attaching the XML file. It is the
> config with a "NULL" host. Just remove the Translated Src in the NAT
> rule for a) above. Which IMHO is the better representation.
>
>

I've implemented this feature for v1.0.8.  For the following rule from 
your example:

  OSrc               ODst    OSrv     TSrc     TDst    TSrv

Internal Network    DMZ     ftp      Any       Any    Any

it generates this code:

#
# Rule  0(NAT)
#
#
map internal from 10.1.1.0/24 to 10.3.3.3/24 port = 21 -> 0/0 proxy 
port 21 ftp/tcp
map external from 10.1.1.0/24 to 10.3.3.3/24 port = 21 -> 0/0 proxy 
port 21 ftp/tcp
map DMZ from 10.1.1.0/24 to 10.3.3.3/24 port = 21 -> 0/0 proxy port 21 
ftp/tcp

Note that TSrc is "Any", that makes this rule a "no nat" rule.

--vk