1c8910db02
point them to options(4) for more details. Also point out that ipf is necc. for ipnat to function. Oh, and convert ipnat.8 to mandoc while I was in here... was easier to convert it then rewrite my stuff after I noticed.. Closes PR# 4813 by Jeff Thieleke
80 lines
1.8 KiB
Groff
80 lines
1.8 KiB
Groff
.\" $NetBSD: ipnat.8,v 1.6 1999/01/12 18:41:07 garbled Exp $
|
|
.\"
|
|
.Dd January 12, 1999
|
|
.Dt IPNAT 8
|
|
.Os
|
|
.Sh NAME
|
|
ipnat \- user interface to the NAT
|
|
.Sh SYNOPSIS
|
|
.Nm ipnat
|
|
.Op Fl lnrsvCF
|
|
.Fl f Ar filename
|
|
.Sh DESCRIPTION
|
|
.Pp
|
|
.Nm
|
|
opens the filename given (treating
|
|
.Dq -
|
|
as stdin) and parses the
|
|
file for a set of rules which are to be added or removed from the IP NAT.
|
|
.PP
|
|
Each rule processed by
|
|
.Nm
|
|
is added to the kernels internal lists if there are no parsing problems.
|
|
Rules are added to the end of the internal lists, matching the order in
|
|
which they appear when given to
|
|
.Nm Ns .
|
|
.Pp
|
|
.Sy Please Note
|
|
That
|
|
.Nm
|
|
is not functional without
|
|
.Xr ipf 8
|
|
running. In addition, the following kernel options need to be turned on
|
|
in order to use
|
|
.Nm Ns :
|
|
.Em GATEWAY ,
|
|
.Em IPFORWARDING
|
|
and
|
|
.Em PFIL_HOOKS .
|
|
The
|
|
.Xr sysctl
|
|
.Pp
|
|
.Dl Dq "sysctl net.inet.ip.forwarding
|
|
.Pp
|
|
will inform you if
|
|
.Em IPFORWARDING
|
|
is currently turned on in your kernel. Please see
|
|
.Xr options 4
|
|
and
|
|
.Xr sysctl 8
|
|
for more information on turning these parameters on.
|
|
.Sh OPTIONS
|
|
.Bl -tag -width four
|
|
.It Fl C
|
|
delete all entries in the current NAT rule listing (NAT rules)
|
|
.It Fl F
|
|
delete all active entries in the current NAT translation table (currently
|
|
active NAT mappings)
|
|
.It Fl l
|
|
Show the list of current NAT table entry mappings.
|
|
.It Fl n
|
|
This flag (no-change) prevents \fBipf\fP from actually making any ioctl
|
|
calls or doing anything which would alter the currently running kernel.
|
|
.It Fl s
|
|
Retrieve and display NAT statistics
|
|
.It Fl r
|
|
Remove matching NAT rules rather than add them to the internal lists
|
|
.It Fl v
|
|
Turn verbose mode on. Displays information relating to rule processing
|
|
and active rules/table entries.
|
|
.El
|
|
.Sh FILES
|
|
.Pa /dev/ipnat
|
|
.br
|
|
.Pa /usr/share/examples/ipf
|
|
Directory with examples.
|
|
.Sh SEE ALSO
|
|
.Xr ipnat 5 ,
|
|
.Xr ipf 8 ,
|
|
.Xr ipfstat 8
|