From owner-freebsd-questions  Tue Oct  8 14:35:46 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 4EAF237B401
	for <freebsd-questions@FreeBSD.ORG>; Tue,  8 Oct 2002 14:35:45 -0700 (PDT)
Received: from skywalker.rogness.net (skywalker.rogness.net [64.251.173.102])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 88D2043E6A
	for <freebsd-questions@FreeBSD.ORG>; Tue,  8 Oct 2002 14:35:44 -0700 (PDT)
	(envelope-from nick@rogness.net)
Received: from skywalker.rogness.net (localhost [127.0.0.1])
	by skywalker.rogness.net (8.12.5/8.11.3) with ESMTP id g98Lc3aa092527;
	Tue, 8 Oct 2002 15:38:03 -0600 (MDT)
	(envelope-from nick@rogness.net)
Received: from localhost (nick@localhost)
	by skywalker.rogness.net (8.12.5/8.12.5/Submit) with ESMTP id g98Lc2BU092524;
	Tue, 8 Oct 2002 15:38:02 -0600 (MDT)
X-Authentication-Warning: skywalker.rogness.net: nick owned process doing -bs
Date: Tue, 8 Oct 2002 15:38:00 -0600 (MDT)
From: Nick Rogness <nick@rogness.net>
To: "2005 - Chill, Samuel Thomas" <stchill@mccallie.org>
Cc: freebsd-questions@FreeBSD.ORG
Subject: Re: Puzzling Simple NATD and IPFW Problem
In-Reply-To: <200210081603.AA143786622@mail.mccallie.org>
Message-ID: <20021008153340.P91809-100000@skywalker.rogness.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

On Tue, 8 Oct 2002, 2005 - Chill, Samuel Thomas wrote:

> I have ipfirewall, ipdivert, and dummynet all compiled into my kernel. I
> am able to run run natd and to specify rules with ipfw, i can also ping
> my external interface. My internal network card (rl1) is 10.0.0.1 and my
> lan clients are running on 10.0.0.x. I can ping everything, the network
> is setup properly. Im using the default rules supplied in the man page
> and apperently natd is not passing them on. I cant ping or go to any
> website at all. The lan clients have 10.0.0.1 set as there default
> gateway. rl0 is connected to the cable modem and gets it ip via dhcp.
> The freebsd box can ping any thing but apparently nothing is forwarded
> to the external interface. I have double checked and reinstalled
> multiple times and it seems that it is bound to never work!

	Do you have gateway_enable="YES" in /etc/rc.conf?

	What do the following show when you run them (just paste them in a
	reply):

	# ifconfig -a
	# netstat -rn
	# ipfw -a l
	# sysctl net.inet.ip.forwarding
	# ps -aux |grep nat
	# cat /etc/rc.conf

Nick Rogness <nick@rogness.net>
- WARNING TO ALL PERSONNEL:
   Firings will continue until morale improves.




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message