Bug 79414

Summary: Error in handbook 24.5.20 port redirection page
Product: Documentation Reporter: Josh Paetzel <josh> <josh>
Component: Books & ArticlesAssignee: jcamou
Status: Closed FIXED    
Severity: Affects Only Me CC: rob
Priority: Normal    
Version: Latest   
Hardware: Any   
OS: Any   

Description Josh Paetzel <josh@tcbug.org> 2005-03-31 23:00:18 UTC 

The documentation for ipnat uses map when it should be rdr for forwarding ports through the nat.

Fix: 

-       <programlisting>map dc0 20.20.20.5/32 port 80 -> 10.0.10.25 port 80</programlisting>
+       <programlisting>rdr dc0 20.20.20.5/32 port 80 -> 10.0.10.25 port 80</programlisting>

        <para>or:</para>

-       <programlisting>map dc0 0/32 port 80 -> 10.0.10.25 port 80</programlisting>
+       <programlisting>rdr dc0 0/32 port 80 -> 10.0.10.25 port 80</programlisting>

        <para>or for a LAN DNS Server on LAN address of <hostid
            role="ipaddr">10.0.10.33</hostid> that needs to receive
          public DNS requests:</para>

-       <programlisting>map dc0 20.20.20.5/32 port 53 -> 10.0.10.33 port 53 udp</programlisting>
+       <programlisting>rdr dc0 20.20.20.5/32 port 53 -> 10.0.10.33 port 53 udp</programlisting>
     </sect2>

     <sect2>--ljw3dmHADbG4tpNnAJTmVNZfLy6DCU9II0yzZaXLWezLzmRW
Content-Type: text/plain; name="file.diff"
Content-Transfer-Encoding: 7bit
Content-Disposition: attachment; filename="file.diff"

--- chapter.sgml.old    Thu Mar 31 15:44:59 2005
+++ chapter.sgml        Thu Mar 31 15:47:12 2005
@@ -1965,17 +1965,17 @@
        address is <hostid role="ipaddr">20.20.20.5</hostid> you would
        code the rule like this:</para>
How-To-Repeat: 

Look at section 24.5.20 in the handbook.

http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/firewalls-ipf.html
Comment 1 Josh Paetzel <josh@tcbug.org> 2005-03-31 23:03:23 UTC 
On Thursday 31 March 2005 15:53, Josh Paetzel wrote:
> >Number:         79414
> >Category:       docs
> >Synopsis:       Error in handbook 24.5.20 port redirection page
> >Confidential:   no
> >Severity:       non-critical
> >Priority:       low
> >Responsible:    freebsd-doc
> >State:          open
> >Quarter:
> >Keywords:
> >Date-Required:
> >Class:          doc-bug
> >Submitter-Id:   current-users
> >Arrival-Date:   Thu Mar 31 22:00:18 GMT 2005
> >Closed-Date:
> >Last-Modified:
> >Originator:     Josh Paetzel
> >Release:        FreeBSD 5.3-RELEASE-p6 i386
> >Organization:
> >Environment:
>
> System: FreeBSD 5.3-RELEASE-p6 #0: Mon Mar 28 16:29:35 CST 2005
>     jpaetzel@twinmp.tcbug.org:/usr/src/sys/i386/compile/TWINMP
>
> >Description:
>
> The documentation for ipnat uses map when it should be rdr for
> forwarding ports through the nat.
>
> >How-To-Repeat:
>
> Look at section 24.5.20 in the handbook.
>
> http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/firewalls
>-ipf.html
>
> >Fix:
>
> --- chapter.sgml.old    Thu Mar 31 15:44:59 2005
> +++ chapter.sgml        Thu Mar 31 15:47:12 2005
> @@ -1965,17 +1965,17 @@
>         address is <hostid role="ipaddr">20.20.20.5</hostid> you
> would code the rule like this:</para>
>
> -       <programlisting>map dc0 20.20.20.5/32 port 80 -> 10.0.10.25
> port 80</programlisting> +       <programlisting>rdr dc0
> 20.20.20.5/32 port 80 -> 10.0.10.25 port 80</programlisting>
>
>         <para>or:</para>
>
> -       <programlisting>map dc0 0/32 port 80 -> 10.0.10.25 port
> 80</programlisting> +       <programlisting>rdr dc0 0/32 port 80 ->
> 10.0.10.25 port 80</programlisting>
>
>         <para>or for a LAN DNS Server on LAN address of <hostid
>             role="ipaddr">10.0.10.33</hostid> that needs to receive
>           public DNS requests:</para>
>
> -       <programlisting>map dc0 20.20.20.5/32 port 53 -> 10.0.10.33
> port 53 udp</programlisting> +       <programlisting>rdr dc0
> 20.20.20.5/32 port 53 -> 10.0.10.33 port 53 udp</programlisting>
> </sect2>
>
>      <sect2>
>
> >Release-Note:
> >Audit-Trail:
> >Unformatted:
>

I hate to respond to myself but I screwed up the patch...Here's the 
correct one:


--- chapter.sgml.old    Thu Mar 31 15:44:59 2005
+++ chapter.sgml        Thu Mar 31 15:59:58 2005
@@ -1965,17 +1965,17 @@
        address is <hostid role="ipaddr">20.20.20.5</hostid> you would
        code the rule like this:</para>

-       <programlisting>map dc0 20.20.20.5/32 port 80 -> 10.0.10.25 
port 80</programlisting>
+       <programlisting>rdr dc0 20.20.20.5/32 port 80 -> 10.0.10.25 
port 80</programlisting>

        <para>or:</para>

-       <programlisting>map dc0 0/32 port 80 -> 10.0.10.25 port 
80</programlisting>
+       <programlisting>rdr dc0 0/0 port 80 -> 10.0.10.25 port 
80</programlisting>

        <para>or for a LAN DNS Server on LAN address of <hostid
            role="ipaddr">10.0.10.33</hostid> that needs to receive
          public DNS requests:</para>

-       <programlisting>map dc0 20.20.20.5/32 port 53 -> 10.0.10.33 
port 53 udp</programlisting>
+       <programlisting>rdr dc0 20.20.20.5/32 port 53 -> 10.0.10.33 
port 53 udp</programlisting>
     </sect2>

     <sect2>


-- 
Thanks,

Josh Paetzel
Comment 2 jcamou freebsd_committer freebsd_triage 2005-04-01 10:31:28 UTC 
Responsible Changed
From-To: freebsd-doc->jcamou

Grab it.
Comment 3 jcamou freebsd_committer freebsd_triage 2005-05-21 21:09:44 UTC 
State Changed
From-To: open->closed

This issue has been already solved by remko@.  Thanks.