From owner-freebsd-questions Tue Apr 23 6: 9: 6 2002 Delivered-To: freebsd-questions@freebsd.org Received: from dns.perimeter.co.za (dns.perimeter.co.za [196.25.164.254]) by hub.freebsd.org (Postfix) with ESMTP id 8864637B400 for ; Tue, 23 Apr 2002 06:08:58 -0700 (PDT) Received: from PATRICK (loopback.mipjhb [209.212.102.245] (may be forged)) by dns.perimeter.co.za (8.11.1/8.11.1) with SMTP id g3ND8sL01052 for ; Tue, 23 Apr 2002 15:08:54 +0200 (SAST) (envelope-from peri@perimeter.co.za) Message-ID: <000501c1eac7$bc094480$b50d030a@PATRICK> From: "Patrick O'Reilly" To: "FreeBSD Question List" Subject: Unable to see LAN from gateway! Date: Tue, 23 Apr 2002 15:06:48 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4522.1200 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Good day all! I have the strangest problem - you won't believe this! I have a FreeBSD gateway/router and a branch office, configured like so: -------------- PPP 192.168.255.6/30 | FreeBSD | LAN 192.168.3.1/24 <<---------(hdlc0) Gateway (dc0)-------O (<<--default gateway) | | -------------- Now, the problem: I cannot ping/traceroute/connect from elsewhere to any addresses on the 192.168.3.0/24 network, except 192.168.3.1 itself. When I use traceroute from outside it is successful until 192.168.255.6, then dies on the next hop. If I log on to that gateway server itself, I can get anywhere out via the PPP link, and I can ping 192.168.3.1, but nothing else on 192.168.3.0/24 responds. Now, before you say "Plug the cable in!" :) - Users on the 192.168.3.0 LAN are able to fetch their emails (from the head office mail server), browse the web, etc. All of this traffic is traversing the gateway quite merrily! ?????????????? The box has ipfw compiled into the kernel, but at present the "rc.firewall" is running in "OPEN" mode. There is no NAT happening on this box either. I must be missing something really obvious! Please hit me with the clue club. Regards, Patrick O'Reilly. ___ _ __ / _ )__ __ (_)_ __ ___ _/ /____ __ / __/ -_) _) / ~ ) -_), ,-/ -_) _) /_/ \__/_//_/_/~/_/\__/ \__/\__/_/ http://www.perimeter.co.za To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message