From owner-freebsd-questions Wed Dec 25 0:42:43 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 13A1637B401 for ; Wed, 25 Dec 2002 00:42:42 -0800 (PST) Received: from relay3.softcomca.com (relay3.softcomca.com [168.144.1.70]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6F83C43ED1 for ; Wed, 25 Dec 2002 00:42:41 -0800 (PST) (envelope-from adaml@visimation.com) Received: from M2W047.mail2web.com ([168.144.108.47]) by relay3.softcomca.com with Microsoft SMTPSVC(5.0.2195.5329); Wed, 25 Dec 2002 03:42:30 -0500 Message-ID: <163890-220021232584230611@M2W047.mail2web.com> X-Priority: 3 Reply-To: adaml@visimation.com X-Originating-IP: 12.228.14.29 X-URL: http://mail2web.com/ From: "adaml@visimation.com" To: freebsd-questions@freebsd.org Subject: Help with IPF and IPNAT Date: Wed, 25 Dec 2002 03:42:30 -0500 MIME-Version: 1.0 Content-type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable X-OriginalArrivalTime: 25 Dec 2002 08:42:30.0643 (UTC) FILETIME=[8FB77C30:01C2ABF1] Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Argh! I've been pulling my hair out trying to get my NAT gateway going=2E= =20 I have two interfaces, one external and internal, servicing a private LAN=2E= =20 From the LAN I can ping the internal interface and the external interface,= but I can't get past the ext=2E interface=2E For testing my rules are pas= s in all and pass out all=2E From the gateway itself I can ping anywhere outsi= de or inside=2E I have tried loading IPNAT and IPF as loadable kernel modules by adding th= e following to /etc/rc=2Econf: gateway_enable=3D"YES" network_interfaces=3D"x10 dc0 lo0" ifconfig x10=2E=2E=2E ifconfig dc0=2E=2E=2E ipfilter_enable=3D"YES" ipfilter_rules=3D"/etc/ipf=2Erules" ipfilter_program=3D"/sbin/ipf" ipfilter_flags=3D"" ipnat_enable=3D"YES" ipnat_program=3D"/sbin/ipnat" ipnat_flags=3D"" Each interface is up and running=2E My default gateway in /etc/rc=2Econf = is the gateway of the external NIC=2E Can anyone see anything wrong with what I am doing, or something missing?=20= Do I need routed installed and running? I also tried forward_sourceroute=3D"YES", but that didn't seem to help=2E Thanks, Adam Lofstedt -------------------------------------------------------------------- mail2web - Check your email from the web at http://mail2web=2Ecom/ =2E To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message