From owner-freebsd-questions  Tue Sep 25  6:18:59 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from c1828785-a.saltlk1.ut.home.com (c1828785-a.saltlk1.ut.home.com [24.20.97.231])
	by hub.freebsd.org (Postfix) with ESMTP id D09B437B40F
	for <freebsd-questions@freebsd.org>; Tue, 25 Sep 2001 06:18:56 -0700 (PDT)
Received: from there (hwnsps@localhost [127.0.0.1])
	by c1828785-a.saltlk1.ut.home.com (8.11.6/8.11.5) with SMTP id f8PDHx920657;
	Tue, 25 Sep 2001 07:18:00 -0600 (MDT)
	(envelope-from mupi@mknet.org)
Message-Id: <200109251318.f8PDHx920657@c1828785-a.saltlk1.ut.home.com>
Content-Type: text/plain;
  charset="iso-8859-1"
From: Mike Porter <mupi@mknet.org>
To: "P. U. (Uli) Kruppa" <root@pukruppa.de>,
	Joe Clarke <marcus@marcuscom.com>
Subject: Re: Gateway? (I read all TFM's - really!)
Date: Tue, 25 Sep 2001 07:17:59 -0600
X-Mailer: KMail [version 1.3]
Cc: FreeBSD User Questions List <freebsd-questions@freebsd.org>
References: <20010924182733.K977-100000@big>
In-Reply-To: <20010924182733.K977-100000@big>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

On Monday 24 September 2001 12:33 pm, P. U. (Uli) Kruppa wrote:
> On Mon, 24 Sep 2001, Joe Clarke wrote:
> > Did you put the following in /etc/rc.conf:
> >
> > gateway_enable="YES"
> >
> > on big?
>
> Yes!
>
> > What do you have configured on small with reagrds to /etc/resolv.conf
> > (i.e. DNS servers)?
>
> domain pukruppa.de
> nameserver 192.168.10.1
>
> (My machines' full names are small.pukruppa.de and
> big.pukruppa.de , these names also can be pinged by both.)
>

one possible (more subtle than the other solutions posted; check those 
first)answer.  With that nameserver setup, you DO need to be running some 
form of DNS server on big.  On my home network, I use my provider's DNS as 
the nameserver on all my machines. (actually, I use two of theirs, and a 
third, becuase they are notorious for DNS problems...but that;s another issue 
entirely).  One way to check for this is to ping an outside address using 
just the IP. (use nslookup on big if you have to).

Also, you can check if NAT/firewalling is working correctly, or blocking your 
packets, but pinging each interface of big from small.  If you can ping the 
rl1 interface, but not the rl0 or tun0 interface, either gateway isn't 
working, NAT isn't working (although pinging the outside interface should be 
possible even without NAT) or your firewall rules on big are blocking the 
packets.

mike

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message