From owner-freebsd-questions Sun May 28 12: 2:13 2000 Delivered-To: freebsd-questions@freebsd.org Received: from mail.rdc2.on.home.com (ha1.rdc2.on.home.com [24.9.0.15]) by hub.freebsd.org (Postfix) with ESMTP id D7D6237B7B5 for ; Sun, 28 May 2000 12:02:10 -0700 (PDT) (envelope-from generic@unitedtamers.com) Received: from unitedtamers.com ([24.68.108.236]) by mail.rdc2.on.home.com (InterMail vM.4.01.02.17 201-229-119) with ESMTP id <20000528190209.UJNP23706.mail.rdc2.on.home.com@unitedtamers.com> for ; Sun, 28 May 2000 12:02:09 -0700 Message-ID: <39316D3C.8461F621@unitedtamers.com> Date: Sun, 28 May 2000 15:02:20 -0400 From: Generic Player X-Mailer: Mozilla 4.72 [en] (X11; I; Linux 2.2.12 i386) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-questions@freebsd.org Subject: Firewall + natd, what am I doing wrong? Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I am using FreeBSD 4-release, and I read through the man page on natd and followed its instructions, but no luck. I'll give you the run-down of what I have done, hopefully someone can see the problem. First, I added : options IPFIREWALL options IPDIVERT to my config and built the new kernel. Then I added: firewall_enable=YES firewall_type=open gateway_enable=YES to my /etc/rc.conf file. /etc/services already had the line "natd 8668/divert" so I didn't need to add it. Then I added the following to my /etc/rc.firewall, and changed the IP addresses and netmasks listed in it to the ones I am using. /sbin/ipfw -f flush /sbin/ipfw add divert natd all from any to any via ed0 /sbin/ipfw add pass all from any to any I have ed0 as my internet connection, and xl0 as my internal network, and I run the command natd -interface ed0 when I first boot up. I can access both the LAN and the internet from this machine, but the rest of the LAN can't get internet access. Anything I missed? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message