From owner-freebsd-questions@FreeBSD.ORG Wed Apr 12 08:34:31 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 59C0316A402 for ; Wed, 12 Apr 2006 08:34:31 +0000 (UTC) (envelope-from arnoldlee_cn@yahoo.com.cn) Received: from web15810.mail.cnb.yahoo.com (web15810.mail.cnb.yahoo.com [202.165.102.90]) by mx1.FreeBSD.org (Postfix) with SMTP id 6F06543D48 for ; Wed, 12 Apr 2006 08:34:30 +0000 (GMT) (envelope-from arnoldlee_cn@yahoo.com.cn) Received: (qmail 89546 invoked by uid 60001); 12 Apr 2006 08:34:26 -0000 DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com.cn; h=Message-ID:Received:Date:From:Subject:To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=0S/djGmLJ3oMjtP6mxxSpbX8AYKkIL6Ny12Od8efU5pGkw+hq4wiL04pz/kl0sa1o/WDeo1I7G+qXg2kpSgOhetkT+kUNT9UoKpdNKmTzvNMKfNh9UYswb6ktcbaQMfEu/ARS1hBB6/jqEsyEiKbphcQsF4faQqs67BFzusHYI0= ; Message-ID: <20060412083426.89543.qmail@web15810.mail.cnb.yahoo.com> Received: from [124.88.41.193] by web15810.mail.cnb.yahoo.com via HTTP; Wed, 12 Apr 2006 16:34:26 CST Date: Wed, 12 Apr 2006 16:34:26 +0800 (CST) From: Arnold Lee To: freebsd-questions@freebsd.org MIME-Version: 1.0 X-Mailman-Approved-At: Wed, 12 Apr 2006 11:35:56 +0000 Content-Type: text/plain; charset=gb2312 Content-Transfer-Encoding: 8bit X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: problem with ipfilter(ipnat) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 12 Apr 2006 08:34:31 -0000 I am in a small lan and want to use fb 6.0 as a router to share internet access. I use mpd 3.18 to dial adsl on demand. I configured ipnat with : map rl0 10.0.0.0/8 -> 0.0.0.0/32 portmap tcp/udp auto map rl0 10.0.0.0/8 -> 0.0.0.0/32 And then I use my client compute(windows 2000 Pro) to access internet, it seems ok, but soon I realize that there are some websites I can not access! For example, www.chinaunix.net is unacessable! So are some ftp sites such as ftp.freebsd.org. It must be a problem of the FB6 box, because if i access internet directly from the win2000 box, all those sites above is ok ! what is wrong? By the way, I donot use ipfirewall and other firewall, and in rc.conf, I wrote "ipfilter_enable = NO, ipnat_enable= YES". Can you help me? --------------------------------- 无限容量雅虎相册,原图等大下载,超快速度,赶快抢注!