Date: Wed, 26 May 1999 01:31:44 +0200 From: Juergen Nickelsen <jnickelsen@acm.org> To: Shawn Workman <sworkman@iea-software.com> Cc: freebsd-net@FreeBSD.ORG Subject: Re: Just a question Message-ID: <491041.3136671104@ockholm.jn.berlin.snafu.de> In-Reply-To: <00b001bea6d4$3402aa20$24a535cf@ieasoftware.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--On Die, 25. Mai 1999 10:29 -0700 Shawn Workman
<sworkman@iea-software.com> wrote:
> I just built a FreeBSD box that has 2 Intel pro 100b cards in it
> (fxp0, fxp1)
>
> I have rebuilt my kernel and enabled the firewall, bridging, and
> dummynet.
Do you really need bridging and dummynet? For a router with NAT, you
usually don't.
> fxp1 is the interface to the internet and fxp0 is the interface to
> the LAN.
[...]
> I am running NATD in the following manner
>
> natd -interface fxp0
>
> if I run it on fxp1 then I can no longer get to the internet.
The NATd should actually run on the outer interface. Have you set up
your firewall rules right? Look into /etc/rc.firewall; start with the
"simple" setup and adapt it to your needs. Either do it the hard way
like I did (guess what you need, set up the rules, and learn from your
mistakes) or read the firewall book from O'Reilly ("Build Internet
Firewalls" or the like); it is said yo be quite helpful.
Greetings, Juergen.
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?491041.3136671104>