From ast@marabu.ch  Fri Feb 20 06:37:45 1998
Received: from coyote.instrumatic.ch ([195.226.4.148])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id GAA26957
          for <FreeBSD-gnats-submit@freebsd.org>; Fri, 20 Feb 1998 06:37:37 -0800 (PST)
          (envelope-from ast@marabu.ch)
Received: (from root@localhost)
	by coyote.instrumatic.ch (8.8.7/8.8.7/ast-971024) with UUCP id PAA01060
	for FreeBSD-gnats-submit@freebsd.org; Fri, 20 Feb 1998 15:32:05 +0100 (MET)
Received: (from uucp@localhost)
	by hawk.marabu.ch (8.8.8/8.8.8) with UUCP id PAA11105
	for FreeBSD-gnats-submit@freebsd.org; Fri, 20 Feb 1998 15:24:04 +0100 (MET)
	(envelope-from ast@marabu.ch)
Received: by marabu.marabu.ch (8.7.5/970531-ast-7.9) id PAA12410; Fri, 20 Feb 1998 15:19:04 +0100 (CET)
Received: by NeXT.Mailer (1.118.2)
Message-Id: <199802201419.PAA12410@marabu.marabu.ch>
Date: Fri, 20 Feb 98 15:19:02 +0100
From: Adrian Steinmann <ast@marabu.ch>
To: FreeBSD-gnats-submit@freebsd.org
Subject: natd on 2.2.5-STABLE does not honor -port option: use natd_1.11

>Number:         5802
>Category:       bin
>Synopsis:       natd on 2.2.5-stable does not honor -port option: use natd_1.11
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    freebsd-bugs
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Fri Feb 20 06:40:00 PST 1998
>Closed-Date:    Fri Feb 20 07:42:25 PST 1998
>Last-Modified:  Fri Feb 20 07:50:10 PST 1998
>Originator:     ast@marabu.ch
>Release:        FreeBSD 2.2.5-STABLE i386
>Organization:
Steinmann Consulting
>Environment:
2.2.5-STABLE using ipfw divert/natd for IP address translation
>Description:

It seems that 2.2.5-STABLE has an old version of natd which does
not honor the -port flag correctly. What happens is tat natd chooses
the next free port >1024 which is usually not the one specified by
the ipfw divert line and so NAT fails.

Apparently -CURRENT has a different version (1.8) and the latest
and greatest from ftp://ftp.suutari.iki.fi/pub/natd is version
1.11.

I have successfully built the latter and simply re-installed it
over the -STABLE version.

>How-To-Repeat:

Start natd and run netstat -an to see which port it is listening
on - it will not be on what you have specified!

>Fix:

Bring -STABLE and -CUURENT in sync with the latest version on
ftp://ftp.suutari.iki.fi/pub/natd

This bug is actually mentioned in the list of changes ("service
port is a short, not a long").

Adrian
_________________________________________________________________________
Dr. Adrian Steinmann  Steinmann Consulting  Apollostrasse 21  8032 Zurich
   Tel +41 1 380 30 83     Fax +41 1 380 30 85    Mailto:ast@marabu.ch
>Release-Note:
>Audit-Trail:
State-Changed-From-To: open->closed 
State-Changed-By: brian 
State-Changed-When: Fri Feb 20 07:42:25 PST 1998 
State-Changed-Why:  
Updated natd to version 1.11 

From: Brian Somers <brian@Awfulhak.org>
To: Adrian Steinmann <ast@marabu.ch>
Cc: FreeBSD-gnats-submit@freebsd.org
Subject: Re: bin/5802: natd on 2.2.5-STABLE does not honor -port option: use natd_1.11 
Date: Fri, 20 Feb 1998 15:44:13 +0000

 [.....]
 > It seems that 2.2.5-STABLE has an old version of natd which does
 > not honor the -port flag correctly. What happens is tat natd chooses
 > the next free port >1024 which is usually not the one specified by
 > the ipfw divert line and so NAT fails.
 
 The code in 2.2.5, although incorrect should work ok !  I'll update 
 it to the latest version anyway.
 
 > Apparently -CURRENT has a different version (1.8) and the latest
 > and greatest from ftp://ftp.suutari.iki.fi/pub/natd is version
 > 1.11.
 
 The 1.8 in -current is the cvs id.  Nothing to do with the natd 
 version.
 
 -- 
 Brian <brian@Awfulhak.org>, <brian@FreeBSD.org>, <brian@OpenBSD.org>
       <http://www.Awfulhak.org>
 Don't _EVER_ lose your sense of humour....
 
 
>Unformatted:
