1ipnat(1M)               System Administration Commands               ipnat(1M)
2
3
4

NAME

6       ipnat - user interface to the NAT subsystem
7

SYNOPSIS

9       ipnat [-CdFhlnRrsv] -f filename
10
11

DESCRIPTION

13       The  ipnat  utility  opens  a  specified file (treating - as stdin) and
14       parses it for a set of rules that are to be added or removed  from  the
15       IP NAT.
16
17
18       If there are no parsing problems, each rule processed by ipnat is added
19       to the kernel's internal lists. Rules  are  appended  to  the  internal
20       lists, matching the order in which they appear when given to ipnat.
21
22
23       ipnat's  use is restricted through access to /dev/ipauth, /dev/ipl, and
24       /dev/ipstate. The default permissions of these files require  ipnat  to
25       be run as root for all operations.
26
27
28       ipnat's  use  is  restricted  through access to /dev/ipnat. The default
29       permissions of /dev/ipnat require ipnat to be run as root for all oper‐
30       ations.
31

OPTIONS

33       The following options are supported:
34
35       -C             Delete  all entries in the current NAT rule listing (NAT
36                      rules).
37
38
39       -d             Turn debug mode on. Causes a hex dump of filter rules to
40                      be generated as it processes each one.
41
42
43       -F             Delete all active entries in the current NAT translation
44                      table (currently active NAT mappings).
45
46
47       -f filename    Parse specified file for rules to be  added  or  removed
48                      from the IP NAT. filename can be stdin.
49
50
51       -h             Print number of hits for each MAP/Redirect filter.
52
53
54       -l             Show the list of current NAT table entry mappings.
55
56
57       -n             Prevents  ipf  from doing anything, such as making ioctl
58                      calls, which might alter the currently running kernel.
59
60
61       -R             Disable both IP address-to-hostname resolution and  port
62                      number-to-service name resolution.
63
64
65       -r             Remove  matching  NAT  rules rather than add them to the
66                      internal lists.
67
68
69       -s             Retrieve and display NAT statistics.
70
71
72       -v             Turn verbose mode on. Displays information  relating  to
73                      rule processing and active rules/table entries.
74
75

FILES

77       /dev/ipnat
78
79           Link to IP Filter pseudo device.
80
81
82       /dev/kmem
83
84           Special file that provides access to virtual address space.
85
86
87       /etc/ipf/ipnat.conf
88
89           Location of ipnat startup configuration file.
90
91
92       /usr/share/ipfilter/examples/
93
94           Contains numerous IP Filter examples.
95
96

ATTRIBUTES

98       See attributes(5) for descriptions of the following attributes:
99
100
101
102
103       ┌─────────────────────────────┬─────────────────────────────┐
104       │      ATTRIBUTE TYPE         │      ATTRIBUTE VALUE        │
105       ├─────────────────────────────┼─────────────────────────────┤
106       │Availability                 │SUNWipfu                     │
107       ├─────────────────────────────┼─────────────────────────────┤
108       │Interface Stability          │Committed                    │
109       └─────────────────────────────┴─────────────────────────────┘
110

SEE ALSO

112       ipf(1M), ipfstat(1M), ipnat(4), attributes(5)
113
114
115
116SunOS 5.11                        3 Apr 2008                         ipnat(1M)
Impressum