From owner-freebsd-questions@FreeBSD.ORG Sun Sep 26 14:42:08 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9610216A4CE for ; Sun, 26 Sep 2004 14:42:08 +0000 (GMT) Received: from web10703.mail.yahoo.com (web10703.mail.yahoo.com [216.136.130.211]) by mx1.FreeBSD.org (Postfix) with SMTP id 6542843D41 for ; Sun, 26 Sep 2004 14:42:06 +0000 (GMT) (envelope-from shubinzhu@yahoo.com) Message-ID: <20040926144206.99169.qmail@web10703.mail.yahoo.com> Received: from [64.36.44.50] by web10703.mail.yahoo.com via HTTP; Sun, 26 Sep 2004 07:42:06 PDT Date: Sun, 26 Sep 2004 07:42:06 -0700 (PDT) From: Shu Bin Zhu To: freebsd-questions@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Content-Filtered-By: Mailman/MimeDel 2.1.1 Subject: Running NAT and can't Ping X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 26 Sep 2004 14:42:08 -0000 I have a strange problem. Here is my setup. ISP 1 ISP 2 | | Router 1 Router 2 192.168.0.1 Internet Address A | | | | ---------------------- Switch -------------------- | | | FreeBSD1 FreeBSD2 Windows 2000 192.168.0.254 192.168.0.2 192.168.0.253 Internet Address B (NAT) The problem is if NAT on FreeBSD2 is not running, all the machines can ping each other. If FreeBSD2 runs NAT, ping still works, except FreeBSD2 can't ping Router1 (192.168.0.1) and FreeBSD1 (192.168.0.254). FreeBSD2 can ping to the interent fine. The Windows 2000 machines gets it's IP from DHCP running on FreeBSD2. For a day, FreeBSD can't ping Windows 2000 either. But now it is able to. The NAT configuration on FreeBSD2 is : /sbin/natd -u -a (xxx.xxx.xxx.xxx Internet Address B) /sbin/ipfw -f flush /sbin/ipfw add divert natd all from any to any via (xxx.xxx.xxx.xxx Internet Address B) /sbin/ipfw add pass all from any to any The unusual setup is the FreeBSD2 only has one ethernet card, and is doing IP aliasing. I have another setup with 2 FreeBSD boxes, and one or both of them are doing NAT, and doesn't have this 'one way' ping problem. Thanks in advance. Shu --------------------------------- Do you Yahoo!? Yahoo! Mail Address AutoComplete - You start. We finish.