From owner-freebsd-questions Tue Feb 29 20: 8:15 2000 Delivered-To: freebsd-questions@freebsd.org Received: from cytosine.dhs.org (cx272244-a.orng1.occa.home.com [24.1.177.149]) by hub.freebsd.org (Postfix) with ESMTP id 1831937BDC7 for ; Tue, 29 Feb 2000 20:08:11 -0800 (PST) (envelope-from bhishan@cytosine.dhs.org) Received: (from bhishan@localhost) by cytosine.dhs.org (8.9.3/8.9.3) id UAA13503; Tue, 29 Feb 2000 20:08:07 -0800 (PST) (envelope-from bhishan) From: Bhishan Hemrajani Message-Id: <200003010408.UAA13503@cytosine.dhs.org> Subject: Re: Problem with IP aliasing In-Reply-To: from Yves Berthiaume at "Feb 29, 2000 09:48:00 pm" To: Yves Berthiaume Date: Tue, 29 Feb 2000 20:08:07 -0800 (PST) Cc: freebsd-questions@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL68 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG First of all, that stuff you have in your rc.firewall is wrong. Your rc.firewall should look like this: $fwcmd -f flush $fwcmd add 10 divert natd all from any to any via de1 $fwcmd add 65000 allow all from any to any Also, you should be starting natd like this: natd -n xl1 --bhishan > Hi all > > I've searched the mail archive but could'nt find exactly what I needed. > > Here it goes: > > System config: > FreeBSD 3.3-STABLE > 2 networks cards :3COM XL EtherExpress 905b > NATD for firewall(simple) > Stronghold web server > > > I've got *some* Linux experience, but very little with FreeBSD. > > I've been trying to ad an IP address to my external card. So I cant use > that IP for a Virtual Host on Stronghold. Here's the exact syntax used in > rc.conf for both cards: > > ifconfig_xl0="inet 192.168.1.1 netmask 255.255.255.0" > ifconfig_xl1="inet 207.236.242.12 netmask 255.255.255.240" > ifconfig_xl1_alias0="inet 207.236.242.5 netmask 0xffffffff0" > > It seem to be ok, when I do "ifconfig xl1" I get: > > xl1: flags=8843 mtu 1500 > inet 207.236.242.12 netmask 0xfffffff0 broadcast 207.236.242.15 > inet 207.236.242.5 netmask 0xfffffff0 broadcast 207.236.242.15 > ether 00:50:04:e1:a2:1e > media: 100baseTX > supported media: autoselect 100baseTX 100baseTX > 100baseTX > 10baseT/UTP 10baseT/UTP 10baseT/UTP > > When i do a "netstat -rn -finet" I get: > > Routing tables > > Internet: > Destination Gateway Flags Refs Use Netif Expire > default 207.236.242.1 UGSc 6 43242 xl1 > 127.0.0.1 127.0.0.1 UH 0 0 lo0 > 192.168.1 link#1 UC 0 0 xl0 > 192.168.1.22 0:60:97:b5:97:30 UHLW 1 224 xl0 971 > 207.236.242/28 link#2 UC 0 0 xl1 > 207.236.242.1 0:10:7b:b3:cf:5b UHLW 7 0 xl1 183 > 207.236.242.8 0:50:e4:90:87:48 UHLW 0 430 xl1 1073 > 207.236.242.12 0:50:4:e1:a2:1e UHLW 0 20 lo0 > > But this is the first time I'm looking at routing tables.... > > When I ping the IP's locally I get no answer from my alias IP. But I do get > one when I ping it from inside my network. Which makes me think that it may > be a NATD problem. Do I have to declare my IP alias? > If so what is the syntax? > > Here's a snipet from my rc.firewall > > oif="xl1" > onet="207.236.242.0" > omask="255.255.255.240" > oip="207.236.242.12" > > > > > > _______________________________________________ > Radicaux Libres Solutions technologiques > Yves Berthiaume 4644 Parthenais > T:514.529.0989 Montreal, Quebec > F:514.529.4633 H2H 2G7 > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message