From owner-freebsd-questions@FreeBSD.ORG Tue Apr 19 22:02:04 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 61F5E16A4CE for ; Tue, 19 Apr 2005 22:02:04 +0000 (GMT) Received: from mail.nativenerds.com (host-70-0-111-24.midco.net [24.111.0.70]) by mx1.FreeBSD.org (Postfix) with ESMTP id E343D43D31 for ; Tue, 19 Apr 2005 22:02:03 +0000 (GMT) (envelope-from estover@nativenerds.com) Received: from red (host-133-35-230-24.midco.net [24.230.35.133]) j3JMEmgX012643; Tue, 19 Apr 2005 16:14:48 -0600 (MDT) (envelope-from estover@nativenerds.com) From: Ed Stover To: bob@a1poweruser.com In-Reply-To: References: Content-Type: text/plain Organization: Native Nerds Date: Tue, 19 Apr 2005 16:02:07 -0600 Message-Id: <1113948127.69294.12.camel@red.nativenerds.com> Mime-Version: 1.0 X-Mailer: Evolution 2.0.3 FreeBSD GNOME Team Port Content-Transfer-Encoding: 7bit X-Spam-Status: No, hits=0.0 required=5.0 tests=none autolearn=no version=2.63 X-Spam-Checker-Version: SpamAssassin 2.63 (2004-01-11) on mail.nativenerds.com cc: faisal gillani cc: freebsd-questions@freebsd.org Subject: RE: NATD server problem on 5.3 ? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: estover@nativenerds.com List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 19 Apr 2005 22:02:04 -0000 And I would like to add these questions to On Tue, 2005-04-19 at 07:44 -0400, bob@a1poweruser.com wrote: > Saying it's not working is way to vague. > You need to post more details about what is not working. > Like can the 5.3 server ping the public internet? > Can it ping PCs on the LAN? > Can a win LAN PC ping the server? > What does the firewall log contain? Does nat start up? do a ps -ax |grep nat Are you sure your natd.conf is correctly formatted? > Have you tested with firewall out of the way by having only single > rule to pass all packets? > /sbin/ipfw -f flush > /sbin/ipfw add allow all from any to any Generally if it is your first firewall try the rc.conf option of firewall_type="OPEN" and here is what my /etc/natd.cf looks like. ##/etc/natd.cf log yes deny_incoming no use_sockets yes same_ports yes verbose no port 8668 interface ep0 unregistered_only yes ##EOF > > > > -----Original Message----- > From: owner-freebsd-questions@freebsd.org > [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of faisal > gillani > Sent: Tuesday, April 19, 2005 4:08 AM > To: freebsd-questions@freebsd.org > Subject: NATD server problem on 5.3 ? > > > Well i recently installed my first natd server on > freebsd 5.3, but its not working ? > > here is wat i did .. > > 1. compiles kernal with the following options > > options IPFIREWALL > options IPV6FIREWALL > options IPDIVERT > > 2. made the following entries in rc.conf > > defaultrouter="10.0.0.1" > gateway_enable="YES" > hostname="natserver" > ifconfig_fxp0="inet 192.168.0.1 netmask > 255.255.255.0" > ifconfig_xl0="inet 10.0.0.5 netmask 255.255.255.0" > firewall_enable="yes" > natd_enable="yes" > natd_interface="xl0" > natd_flags="-f /etc/natd.conf" > > 3. made the following entries in rc.firewall > > > /sbin/ipfw -f flush > /sbin/ipfw add allow all from any to any via fxp0 > /sbin/ipfw add allow icmp from any to any out via xl0 > /sbin/ipfw add allow all from any to any via lo0 > /sbin/ipfw add divert natd ip from any to any via xl0 > /sbin/ipfw add allow ip from any to 10.0.0.5 in recv > xl0 > /sbin/ipfw add allow ip from 10.0.0.5 to any out xmit > xl0 > > 4. configure the windows clients as follows > > ipaddress = 192.168.0.3 > subnet = 255.255.255.0 > gateway = 192.168.0.1 > dns server = 192.168.0.2 "dns server capable of > resolving internet & local address" > > this is all that i have done but still interet is not > working on clients , what should i do now ? > > > > > *:$., 88,.$:*(((*$ Allah-hu-Akber*:$., 88,.$:*((*$ > God is the Greatest > > > > > __________________________________ > Do you Yahoo!? > Make Yahoo! your home page > http://www.yahoo.com/r/hs > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"