http://www.freebsdwiki.net/index.php?title=Network_Address_Translation&feed=atom&action=historyNetwork Address Translation - Revision history2024-03-28T13:17:55ZRevision history for this page on the wikiMediaWiki 1.18.0http://www.freebsdwiki.net/index.php?title=Network_Address_Translation&diff=13136&oldid=prev173.88.199.104 at 19:20, 13 August 20122012-08-13T19:20:34Z<p></p>
<table class='diff diff-contentalign-left'>
<col class='diff-marker' />
<col class='diff-content' />
<col class='diff-marker' />
<col class='diff-content' />
<tr valign='top'>
<td colspan='2' style="background-color: white; color:black;">← Older revision</td>
<td colspan='2' style="background-color: white; color:black;">Revision as of 19:20, 13 August 2012</td>
</tr><tr><td colspan="2" class="diff-lineno">Line 1:</td>
<td colspan="2" class="diff-lineno">Line 1:</td></tr>
<tr><td class='diff-marker'>−</td><td style="background: #ffa; color:black; font-size: smaller;"><div>'''Network Address Translation''', aka '''NAT''', is a function which allows privately addressed networks to access <del class="diffchange diffchange-inline">publicly addressed namespaces, </del>by using an intermediary publicly addressed [[gateway]] as a go-between.</div></td><td class='diff-marker'>+</td><td style="background: #cfc; color:black; font-size: smaller;"><div>'''Network Address Translation''', aka '''NAT''', is a function which allows privately addressed networks <ins class="diffchange diffchange-inline">(LAN) </ins>to access <ins class="diffchange diffchange-inline">public internet </ins>by using an intermediary publicly addressed [[gateway]] as a go-between<ins class="diffchange diffchange-inline">.</ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="background: #cfc; color:black; font-size: smaller;"><div> </div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="background: #cfc; color:black; font-size: smaller;"><div><ins class="diffchange diffchange-inline">Note: All three Freebsd firewall solutions (ipfw), (ipf), and (pf) along with (ppp) have their own '''NAT''' function that has to be configured</ins>.</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"></td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>For example, say you have a machine with an IP address of 192.168.0.2.  192.168.0.0-192.168.0.255 is a ''private'' subnet, which means that there may be (and in fact are) thousands or hundreds of thousands of machines all using those IP addresses, all over the world.  For this reason, you cannot access the internet directly from this IP address - if you tried to, the web (or other type) server you were trying to talk to wouldn't know which of thousands of identically numbered networks to route its response to!  So your privately addressed computer needs a gateway to NAT your traffic for you if that traffic is going to leave your private network.</div></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>For example, say you have a machine with an IP address of 192.168.0.2.  192.168.0.0-192.168.0.255 is a ''private'' subnet, which means that there may be (and in fact are) thousands or hundreds of thousands of machines all using those IP addresses, all over the world.  For this reason, you cannot access the internet directly from this IP address - if you tried to, the web (or other type) server you were trying to talk to wouldn't know which of thousands of identically numbered networks to route its response to!  So your privately addressed computer needs a gateway to NAT your traffic for you if that traffic is going to leave your private network.</div></td></tr>
<tr><td colspan="2" class="diff-lineno">Line 31:</td>
<td colspan="2" class="diff-lineno">Line 33:</td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"></td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>This limitation can be circumvented to some extent by creating permanent mappings of ports on the WAN side of the gateway with IPs and ports on the private side - for example if you wanted to run a web server on a machine on the inside of the LAN with a private IP address, you could tell the gateway to always NAT-and-forward traffic aimed at port 80 of its WAN to the inside machine's port 80.  Many NAT devices (including FreeBSD machines running [[natd]]) can also map to different inside ports than the WAN port which received the data; so for instance you could route WAN:8080 to port 80 on one inside machine, and WAN:80 to port 80 on a different inside machine.</div></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>This limitation can be circumvented to some extent by creating permanent mappings of ports on the WAN side of the gateway with IPs and ports on the private side - for example if you wanted to run a web server on a machine on the inside of the LAN with a private IP address, you could tell the gateway to always NAT-and-forward traffic aimed at port 80 of its WAN to the inside machine's port 80.  Many NAT devices (including FreeBSD machines running [[natd]]) can also map to different inside ports than the WAN port which received the data; so for instance you could route WAN:8080 to port 80 on one inside machine, and WAN:80 to port 80 on a different inside machine.</div></td></tr>
<tr><td class='diff-marker'>−</td><td style="background: #ffa; color:black; font-size: smaller;"><div><del style="color: red; font-weight: bold; text-decoration: none;"></del></div></td><td colspan="2"> </td></tr>
<tr><td class='diff-marker'>−</td><td style="background: #ffa; color:black; font-size: smaller;"><div><del style="color: red; font-weight: bold; text-decoration: none;">see also: [[natd]] [[Firewall, Configuring]]</del></div></td><td colspan="2"> </td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"></td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>[[Category:FreeBSD Terminology]]</div></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>[[Category:FreeBSD Terminology]]</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>[[Category:Securing FreeBSD]]</div></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>[[Category:Securing FreeBSD]]</div></td></tr>
<!-- diff cache key bsdwiki:diff:version:1.11a:oldid:13116:newid:13136 -->
</table>173.88.199.104http://www.freebsdwiki.net/index.php?title=Network_Address_Translation&diff=13116&oldid=prev173.88.199.104 at 17:54, 13 August 20122012-08-13T17:54:13Z<p></p>
<table class='diff diff-contentalign-left'>
<col class='diff-marker' />
<col class='diff-content' />
<col class='diff-marker' />
<col class='diff-content' />
<tr valign='top'>
<td colspan='2' style="background-color: white; color:black;">← Older revision</td>
<td colspan='2' style="background-color: white; color:black;">Revision as of 17:54, 13 August 2012</td>
</tr><tr><td colspan="2" class="diff-lineno">Line 35:</td>
<td colspan="2" class="diff-lineno">Line 35:</td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"></td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>[[Category:FreeBSD Terminology]]</div></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>[[Category:FreeBSD Terminology]]</div></td></tr>
<tr><td class='diff-marker'>−</td><td style="background: #ffa; color:black; font-size: smaller;"><div>[[Category:<del class="diffchange diffchange-inline">Firewall</del>]]</div></td><td class='diff-marker'>+</td><td style="background: #cfc; color:black; font-size: smaller;"><div>[[Category:<ins class="diffchange diffchange-inline">Securing FreeBSD</ins>]]</div></td></tr>
<!-- diff cache key bsdwiki:diff:version:1.11a:oldid:13076:newid:13116 -->
</table>173.88.199.104http://www.freebsdwiki.net/index.php?title=Network_Address_Translation&diff=13076&oldid=prev173.88.199.104 at 13:41, 13 August 20122012-08-13T13:41:54Z<p></p>
<table class='diff diff-contentalign-left'>
<col class='diff-marker' />
<col class='diff-content' />
<col class='diff-marker' />
<col class='diff-content' />
<tr valign='top'>
<td colspan='2' style="background-color: white; color:black;">← Older revision</td>
<td colspan='2' style="background-color: white; color:black;">Revision as of 13:41, 13 August 2012</td>
</tr><tr><td colspan="2" class="diff-lineno">Line 35:</td>
<td colspan="2" class="diff-lineno">Line 35:</td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"></td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>[[Category:FreeBSD Terminology]]</div></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>[[Category:FreeBSD Terminology]]</div></td></tr>
<tr><td class='diff-marker'>−</td><td style="background: #ffa; color:black; font-size: smaller;"><div><del style="color: red; font-weight: bold; text-decoration: none;">[[Category:Securing FreeBSD]]</del></div></td><td colspan="2"> </td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>[[Category:Firewall]]</div></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>[[Category:Firewall]]</div></td></tr>
</table>173.88.199.104http://www.freebsdwiki.net/index.php?title=Network_Address_Translation&diff=11285&oldid=prevJimbo: Reverted edits by 47.237.0.41 (Talk); changed back to last version by Jimbo2009-05-22T13:47:02Z<p>Reverted edits by <a href="/index.php/Special:Contributions/47.237.0.41" title="Special:Contributions/47.237.0.41">47.237.0.41</a> (<a href="/index.php?title=User_talk:47.237.0.41&action=edit&redlink=1" class="new" title="User talk:47.237.0.41 (page does not exist)">Talk</a>); changed back to last version by <a href="/index.php/User:Jimbo" title="User:Jimbo">Jimbo</a></p>
<table class='diff diff-contentalign-left'>
<col class='diff-marker' />
<col class='diff-content' />
<col class='diff-marker' />
<col class='diff-content' />
<tr valign='top'>
<td colspan='2' style="background-color: white; color:black;">← Older revision</td>
<td colspan='2' style="background-color: white; color:black;">Revision as of 13:47, 22 May 2009</td>
</tr><tr><td colspan="2" class="diff-lineno">Line 1:</td>
<td colspan="2" class="diff-lineno">Line 1:</td></tr>
<tr><td class='diff-marker'>−</td><td style="background: #ffa; color:black; font-size: smaller;"><div><del style="color: red; font-weight: bold; text-decoration: none;">http://www.textnocolilaricl.com </del></div></td><td colspan="2"> </td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>'''Network Address Translation''', aka '''NAT''', is a function which allows privately addressed networks to access publicly addressed namespaces, by using an intermediary publicly addressed [[gateway]] as a go-between.</div></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>'''Network Address Translation''', aka '''NAT''', is a function which allows privately addressed networks to access publicly addressed namespaces, by using an intermediary publicly addressed [[gateway]] as a go-between.</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"></td></tr>
<!-- diff cache key bsdwiki:diff:version:1.11a:oldid:11273:newid:11285 -->
</table>Jimbohttp://www.freebsdwiki.net/index.php?title=Network_Address_Translation&diff=11273&oldid=prev47.237.0.41 at 07:41, 22 May 20092009-05-22T07:41:25Z<p></p>
<table class='diff diff-contentalign-left'>
<col class='diff-marker' />
<col class='diff-content' />
<col class='diff-marker' />
<col class='diff-content' />
<tr valign='top'>
<td colspan='2' style="background-color: white; color:black;">← Older revision</td>
<td colspan='2' style="background-color: white; color:black;">Revision as of 07:41, 22 May 2009</td>
</tr><tr><td colspan="2" class="diff-lineno">Line 1:</td>
<td colspan="2" class="diff-lineno">Line 1:</td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="background: #cfc; color:black; font-size: smaller;"><div><ins style="color: red; font-weight: bold; text-decoration: none;">http://www.textnocolilaricl.com </ins></div></td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>'''Network Address Translation''', aka '''NAT''', is a function which allows privately addressed networks to access publicly addressed namespaces, by using an intermediary publicly addressed [[gateway]] as a go-between.</div></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>'''Network Address Translation''', aka '''NAT''', is a function which allows privately addressed networks to access publicly addressed namespaces, by using an intermediary publicly addressed [[gateway]] as a go-between.</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"></td></tr>
<!-- diff cache key bsdwiki:diff:version:1.11a:oldid:8647:newid:11273 -->
</table>47.237.0.41http://www.freebsdwiki.net/index.php?title=Network_Address_Translation&diff=8647&oldid=prevJimbo: Reverted edits by 208.255.68.245 (Talk); changed back to last version by Jimbo2007-08-20T04:47:38Z<p>Reverted edits by <a href="/index.php/Special:Contributions/208.255.68.245" title="Special:Contributions/208.255.68.245">208.255.68.245</a> (<a href="/index.php?title=User_talk:208.255.68.245&action=edit&redlink=1" class="new" title="User talk:208.255.68.245 (page does not exist)">Talk</a>); changed back to last version by <a href="/index.php/User:Jimbo" title="User:Jimbo">Jimbo</a></p>
<table class='diff diff-contentalign-left'>
<tr valign='top'>
<td colspan='1' style="background-color: white; color:black;">← Older revision</td>
<td colspan='1' style="background-color: white; color:black;">Revision as of 04:47, 20 August 2007</td>
</tr></table>Jimbohttp://www.freebsdwiki.net/index.php?title=Network_Address_Translation&diff=8564&oldid=prevJimbo at 21:32, 21 June 20072007-06-21T21:32:55Z<p></p>
<table class='diff diff-contentalign-left'>
<col class='diff-marker' />
<col class='diff-content' />
<col class='diff-marker' />
<col class='diff-content' />
<tr valign='top'>
<td colspan='2' style="background-color: white; color:black;">← Older revision</td>
<td colspan='2' style="background-color: white; color:black;">Revision as of 21:32, 21 June 2007</td>
</tr><tr><td colspan="2" class="diff-lineno">Line 36:</td>
<td colspan="2" class="diff-lineno">Line 36:</td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>[[Category:FreeBSD Terminology]]</div></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>[[Category:FreeBSD Terminology]]</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>[[Category:Securing FreeBSD]]</div></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>[[Category:Securing FreeBSD]]</div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="background: #cfc; color:black; font-size: smaller;"><div><ins style="color: red; font-weight: bold; text-decoration: none;">[[Category:Firewall]]</ins></div></td></tr>
<!-- diff cache key bsdwiki:diff:version:1.11a:oldid:8105:newid:8564 -->
</table>Jimbohttp://www.freebsdwiki.net/index.php?title=Network_Address_Translation&diff=8105&oldid=prev24.23.181.229 at 09:02, 30 April 20072007-04-30T09:02:37Z<p></p>
<table class='diff diff-contentalign-left'>
<tr valign='top'>
<td colspan='1' style="background-color: white; color:black;">← Older revision</td>
<td colspan='1' style="background-color: white; color:black;">Revision as of 09:02, 30 April 2007</td>
</tr></table>24.23.181.229http://www.freebsdwiki.net/index.php?title=Network_Address_Translation&diff=4762&oldid=prevDave at 04:45, 14 December 20052005-12-14T04:45:49Z<p></p>
<table class='diff diff-contentalign-left'>
<col class='diff-marker' />
<col class='diff-content' />
<col class='diff-marker' />
<col class='diff-content' />
<tr valign='top'>
<td colspan='2' style="background-color: white; color:black;">← Older revision</td>
<td colspan='2' style="background-color: white; color:black;">Revision as of 04:45, 14 December 2005</td>
</tr><tr><td colspan="2" class="diff-lineno">Line 35:</td>
<td colspan="2" class="diff-lineno">Line 35:</td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"></td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>[[Category:FreeBSD Terminology]]</div></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>[[Category:FreeBSD Terminology]]</div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="background: #cfc; color:black; font-size: smaller;"><div><ins style="color: red; font-weight: bold; text-decoration: none;">[[Category:Securing FreeBSD]]</ins></div></td></tr>
<!-- diff cache key bsdwiki:diff:version:1.11a:oldid:3400:newid:4762 -->
</table>Davehttp://www.freebsdwiki.net/index.php?title=Network_Address_Translation&diff=3400&oldid=prevJimbo at 03:51, 15 November 20042004-11-15T03:51:20Z<p></p>
<table class='diff diff-contentalign-left'>
<col class='diff-marker' />
<col class='diff-content' />
<col class='diff-marker' />
<col class='diff-content' />
<tr valign='top'>
<td colspan='2' style="background-color: white; color:black;">← Older revision</td>
<td colspan='2' style="background-color: white; color:black;">Revision as of 03:51, 15 November 2004</td>
</tr><tr><td colspan="2" class="diff-lineno">Line 9:</td>
<td colspan="2" class="diff-lineno">Line 9:</td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>  192.168.0.100 sends packet out.          src: 192.168.0.100:32798 dst: 64.89.70.2:53</div></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>  192.168.0.100 sends packet out.          src: 192.168.0.100:32798 dst: 64.89.70.2:53</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>  -------------------------------------------------------------------------------------</div></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>  -------------------------------------------------------------------------------------</div></td></tr>
<tr><td class='diff-marker'>−</td><td style="background: #ffa; color:black; font-size: smaller;"><div>  <del class="diffchange diffchange-inline"><font color="red"></del>'''192.168.0.1  NATs packet, forwards out.  src: 24.31.168.192:58998</font> dst: 64.89.70.2:53'''</div></td><td class='diff-marker'>+</td><td style="background: #cfc; color:black; font-size: smaller;"><div>  '''192.168.0.1  NATs packet, forwards out.  <ins class="diffchange diffchange-inline"><font color="red"></ins>src: 24.31.168.192:58998</font> dst: 64.89.70.2:53'''</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>  -------------------------------------------------------------------------------------</div></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>  -------------------------------------------------------------------------------------</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>  24.31.168.16  accepts packet, forwards.  src: 24.31.168.192:58998 dst: 64.89.70.2:53</div></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>  24.31.168.16  accepts packet, forwards.  src: 24.31.168.192:58998 dst: 64.89.70.2:53</div></td></tr>
<tr><td colspan="2" class="diff-lineno">Line 22:</td>
<td colspan="2" class="diff-lineno">Line 22:</td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>  24.31.168.16  accepts packet, forwards.  src: 64.89.70.2:53      dst: 24.31.168.192:58998</div></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>  24.31.168.16  accepts packet, forwards.  src: 64.89.70.2:53      dst: 24.31.168.192:58998</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>  -------------------------------------------------------------------------------------</div></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>  -------------------------------------------------------------------------------------</div></td></tr>
<tr><td class='diff-marker'>−</td><td style="background: #ffa; color:black; font-size: smaller;"><div>  <del class="diffchange diffchange-inline"><font color="red"></del>'''24.31.168.192 accepts packet, NATs it.<del class="diffchange diffchange-inline"></font> </del>  src: 64.89.70.2:53      <font color="red">dst: 192.168.0.100:32798'''</font></div></td><td class='diff-marker'>+</td><td style="background: #cfc; color:black; font-size: smaller;"><div>  '''24.31.168.192 accepts packet, NATs it.    src: 64.89.70.2:53      <font color="red">dst: 192.168.0.100:32798'''</font></div></td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>  -------------------------------------------------------------------------------------</div></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>  -------------------------------------------------------------------------------------</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>  192.168.0.100 accepts packet, processes.</div></td><td class='diff-marker'> </td><td style="background: #eee; color:black; font-size: smaller;"><div>  192.168.0.100 accepts packet, processes.</div></td></tr>
<!-- diff cache key bsdwiki:diff:version:1.11a:oldid:651:newid:3400 -->
</table>Jimbo