From owner-freebsd-questions  Wed Dec 25 11:52:10 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 3E07737B401
	for <freebsd-questions@freebsd.org>; Wed, 25 Dec 2002 11:52:09 -0800 (PST)
Received: from cactus.fi.uba.ar (cactus.fi.uba.ar [157.92.49.108])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 31EBC43EA9
	for <freebsd-questions@freebsd.org>; Wed, 25 Dec 2002 11:52:08 -0800 (PST)
	(envelope-from fgleiser@cactus.fi.uba.ar)
Received: from cactus.fi.uba.ar (cactus.fi.uba.ar [157.92.49.108])
	by cactus.fi.uba.ar (8.12.3/8.12.3) with ESMTP id gBPJqTcU087389;
	Wed, 25 Dec 2002 16:52:29 -0300 (ART)
	(envelope-from fgleiser@cactus.fi.uba.ar)
Date: Wed, 25 Dec 2002 16:52:29 -0300 (ART)
From: Fernando Gleiser <fgleiser@cactus.fi.uba.ar>
To: Adam Lofstedt <lofty_2@yahoo.com>
Cc: freebsd-questions@freebsd.org
Subject: Re: Can't route past gateway
In-Reply-To: <20021225172435.68292.qmail@web12201.mail.yahoo.com>
Message-ID: <20021225164651.N62363-100000@cactus.fi.uba.ar>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Spam-Status: No, hits=-103.4 required=5.0
	tests=IN_REP_TO,USER_IN_WHITELIST
	version=2.31
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

On Wed, 25 Dec 2002, Adam Lofstedt wrote:

> I tried to send a message to the list earlier, but my
> email server was down.  I checked the archives, but I
> can't tell if my message has been posted already, so I
> apologize if it has.  If anyone has already replied,
> could you forward your response to this address?

yes, your message was posted. keppt it easy, it's a world-wide holiday,
so the answers can take while. :)


>
> I have a freeBSD machine with two NICS that I am using
> as a NAT gateway.  No matter what I do, clients on my
> LAN can't get past the gateway.  They can ping both
> the interal and external interfaces of the gateway,
> but can't get outside.

Either NAT is not working or the filter are blocking the packets. try doing an
'ipnat -l' and post the output. If the rules are loaded, drop the
filters ('ipf -Fa') and try again from one client.

Tell me if that works.


			Fer


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message