From owner-freebsd-questions@FreeBSD.ORG Tue Jul 13 17:06:05 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DE09116A4CE for ; Tue, 13 Jul 2004 17:06:05 +0000 (GMT) Received: from av3-1-sn1.fre.skanova.net (av3-1-sn1.fre.skanova.net [81.228.11.109]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1931B43D58 for ; Tue, 13 Jul 2004 17:06:05 +0000 (GMT) (envelope-from admin@swedehost.com) Received: by av3-1-sn1.fre.skanova.net (Postfix, from userid 502) id B94C637EFC; Tue, 13 Jul 2004 19:06:03 +0200 (CEST) Received: from smtp3-2-sn1.fre.skanova.net (smtp3-2-sn1.fre.skanova.net [81.228.11.164]) by av3-1-sn1.fre.skanova.net (Postfix) with ESMTP id A8FE037E43; Tue, 13 Jul 2004 19:06:03 +0200 (CEST) Received: from odin.swedehost.com (h171n2fls33o804.telia.com [217.209.211.171]) by smtp3-2-sn1.fre.skanova.net (Postfix) with ESMTP id 697E137E4C; Tue, 13 Jul 2004 19:06:03 +0200 (CEST) Received: from thor.swedehost.com (thor.swedehost.com [192.168.0.10]) by odin.swedehost.com (8.12.11/8.12.11) with ESMTP id i6DH6PRs065507; Tue, 13 Jul 2004 19:06:25 +0200 (CEST) (envelope-from admin@swedehost.com) From: Admin Organization: Swedehost To: freebsd-questions@freebsd.org Date: Tue, 13 Jul 2004 19:06:04 +0200 User-Agent: KMail/1.6.2 References: <001901c468f1$3e99f260$0300a8c0@sabrina> <20040713165630.GA541@freebsd.vmware.dpsca.bg> In-Reply-To: <20040713165630.GA541@freebsd.vmware.dpsca.bg> MIME-Version: 1.0 Content-Disposition: inline Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Message-Id: <200407131906.05044.admin@swedehost.com> X-Scanned-By: MIMEDefang 2.43 cc: "James A. Coulter" cc: Dancho Penev Subject: Re: NEWBIE: FreeBSD 4.10 Internet gateway/DNS problem X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 13 Jul 2004 17:06:06 -0000 On Tuesday 13 July 2004 18.56, Dancho Penev wrote: > On Tue, Jul 13, 2004 at 10:51:21AM -0500, James A. Coulter wrote: > >From: "James A. Coulter" > >To: > >Date: Tue, 13 Jul 2004 10:51:21 -0500 > >Subject: NEWBIE: FreeBSD 4.10 Internet gateway/DNS problem > > > >I am trying to setup my FreeBSD 4.10 box as an internet gateway for a > > small home LAN (2x Win XP and 1x Win 98SE) > > > >The LAN operates without any problems when using the Win 98SE box as a > >gateway - all computers can access the internet > > > >I have two nics installed in the FreeBSD box: > > > > dc0 is the LAN interface via 4-port Linksys hub > > > > dc1 is the WAN interface via cable modem > > > >I have successfully connected to the internet with dc1 > > > >I can ping all other machines on my home LAN with dc0 and vice versa > > > >I cannot access the internet from any machine except the FreeBSD gateway > > > >ifconfig looks like this: > > > >dc0: flags=8843 mtu 1500 > > inet6 fe80::204:5aff:fe76:55f0%dc0 prefixlen 64 scopeid 0x1 > > inet 192.168.1.1 netmask 0xffffff00 broadcast 192.168.1.255 > > ether 00:04:5a:76:55:f0 > > media: Ethernet autoselect (100baseTX ) > > status: active > >dc1: flags=8843 mtu 1500 > > inet6 fe80::2a0:ccff:fe33:e1f6%dc1 prefixlen 64 scopeid 0x2 > > inet 68.105.58.150 netmask 0xfffffe00 broadcast 68.105.59.255 > > ether 00:a0:cc:33:e1:f6 > > media: Ethernet autoselect (100baseTX ) > > status: active > >lp0: flags=8810 mtu 1500 > >lo0: flags=8049 mtu 16384 > > inet6 ::1 prefixlen 128 > > inet6 fe80::1%lo0 prefixlen 64 scopeid 0x4 > > inet 127.0.0.1 netmask 0xff000000 > >ppp0: flags=8010 mtu 1500 > >sl0: flags=c010 mtu 552 > >faith0: flags=8002 mtu 1500 > > > > > >The contents of /etc/rc.conf are: > > > >hostname="sara.mshome.net" > >ifconfig_dc0="inet 192.168.1.1 netmask 255.255.255.0" ifconfig_dc1="DHCP" > > inetd_enable="YES" gateway_enable="YES" > > > >When I try to ping an outside address from a Windows box, I get this > >response: > > > >"Ping request could not find host www.freebsd.org. Please check the name > > and try again." > > > >When I try to ping a known good URL, I get this response: > > > >Pinging 68.99.63.5 with 32 bytes of data: > > > >Request timed out. > > > >Ping statistics for 68.99.63.5: > > > > Packets: Sent = 4, Received = 0, Lost = 4 (100% loss) > > > >I have tried setting the DNS servers on the Windows box to the addresses > >listed in /etc/resolv.conf: > > > >68.105.161.20 > >68.1.18.25 > >68.10.16.30 > > > >I have also tried setting the DNS address directly to the default gateway > >192.168.1.1 and get the same response. > > > >While searching around in /stand/sysinstall I found the named daemon > >enabled. I disabled with no change (I have since re-enabled it because I > >believe that was the default setting when I installed FreeBSD) > > > >FWIW, here's output of netstat -rn on the FreeBSD box: > > > >Internet: > >Destination Gateway Flags Refs Use Netif Expire > >default 68.105.58.1 UGSc 2 3 dc1 > >68.105.58/23 link#2 UC 2 0 dc1 > >68.105.58.1 00:06:2a:cb:7c:54 UHLW 2 0 dc1 1199 > >68.105.58.150 127.0.0.1 UGHS 0 0 lo0 > >127.0.0.1 127.0.0.1 UH 2 26 lo0 > >192.168.1 link#1 UC 1 0 dc0 > >192.168.1.110 00:08:74:3b:8b:ba UHLW 0 4 dc0 1081 > > > >Internet6: > >Destination Gateway Flags > >Netif Expire > > > >::/96 ::1 UGRSc > > > >lo0 > > > >::1 ::1 UH > > > >lo0 > > > >::ffff:0.0.0.0/96 ::1 UGRSc > > > >lo0 > >fe80::/10 ::1 UGRSc > >lo0 > >fe80::%dc0/64 link#1 UC > >dc0 > >fe80::204:5aff:fe76:55f0%dc0 00:04:5a:76:55:f0 UHL > >lo0 > >fe80::%dc1/64 link#2 UC > >dc1 > >fe80::2a0:ccff:fe33:e1f6%dc1 00:a0:cc:33:e1:f6 UHL > >lo0 > >fe80::%lo0/64 fe80::1%lo0 Uc > >lo0 > >fe80::1%lo0 link#4 UHL > >lo0 > >ff01::/32 ::1 U > >lo0 > >ff02::/16 ::1 UGRS > >lo0 > >ff02::%dc0/32 link#1 UC > >dc0 > >ff02::%dc1/32 link#2 UC > >dc1 > >ff02::%lo0/32 ::1 UC > >lo0 > > > >And the results of netstat -rn on the Windows box: > > > >Active Routes: > >Network Destination Netmask Gateway Interface > > Metric 0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.110 20 > > 127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1 > > 192.168.1.0 255.255.255.0 192.168.1.110 192.168.1.110 20 > > 192.168.1.110 255.255.255.255 127.0.0.1 127.0.0.1 20 > > 192.168.1.255 255.255.255.255 192.168.1.110 192.168.1.110 20 > > 224.0.0.0 240.0.0.0 192.168.1.110 192.168.1.110 20 > > 255.255.255.255 255.255.255.255 192.168.1.110 192.168.1.110 1 > > Default Gateway: 192.168.1.1 > >========================================================================== > >= Persistent Routes: > > None > > > >I'm not sure what to do next. For some reason the Windows cannot access a > >name server. From what I understand from the literature I've been using > >(FreeBSD Handbook, Lehey's The Complete FreeBSD, and Anderson's FreeBSD: > > An Open-Source etc etc) all that should be needed is set > > gateway_enable="YES" in /etc/rc.conf and I've done that. > > > >Google revealed some info on using natd for PPOE, but not sure if that > >applies to this problem. > > Definitely you must use NAT. Search Handbook for Network Address > Translation. > > >All suggestions/out-right solutions appreciated. > > > >TIA, > > > >Jim C. > > Hello. You might try something like this in your /etc/rc.conf : gateway_enable="YES" ifconfig_dc1="DHCP" dhcp_program="/sbin/dhclient" dhcp_flags="-q" ifconfig_dc0="inet 192.168.1.1 netmask 255.255.255.0" natd_enable="YES" natd_interface="dc0" natd_flags="-dynamic" And if you like some little protection : firewall_enable="YES" firewall_script="/etc/rc.firewall" firewall_type="OPEN" firewall_logging="YES" And it's never wrong to spend some time reading the man pages :-) Don't forget to put the IP of your Gateway on the Winboxes. /Hasse