Date: Wed, 9 May 2001 09:35:14 -0400 From: "Dave Rideout" <drideout@cssnow.com> To: "FreeBSD Questions" <freebsd-questions@freebsd.org> Subject: NATD Message-ID: <NEBBKBOMILGEKHIBFECLOEABCLAA.drideout@cssnow.com>
next in thread | raw e-mail | index | archive | help
I cant seem to get my cable modem connection working.
I did the following to my system
1. Edited Kernal and added
options IPFIREWALL #firewall
options IPDIVERT #divert sockets
options IPFIREWALL_VERBOSE #print information about
# dropped packets
options "IPFIREWALL_VERBOSE_LIMIT=100" #limit verbosity
options TCP_DROP_SYNFIN #drop TCP packets with SYN+FIN
options TCP_RESTRICT_RST #restrict emission of TCP RST
options "ICMP_BANDLIM"
2. Then I recompiled Kernel
I edited the rc.conf file and added this.
gateway_enable="YES" # Set to YES if this host will be a gateway.
firewall_enable="YES" # Set to YES to enable firewall functionality
firewall_script="/etc/rc.firewall" # Which script to run to set up the
firewall
firewall_type="open" # Firewall type (see /etc/rc.firewall)
firewall_quiet="NO" # Set to YES to suppress rule display
natd_program="/sbin/natd" # path to natd, if you want a different one.
natd_enable="YES" # Enable natd (if firewall_enable == YES).
natd_interface="dc0" # Public interface or IPaddress to use.
natd_flags="-f /etc/natd.conf" # Additional flags for natd.
tcp_drop_synfin="YES" # Set to YES to drop TCP packets with SYN+FIN
# NOTE: this violates the TCP specification
tcp_restrict_rst="YES" # Set to YES to restrict emission of RST
3. Added this to natd.conf
use_sockets yes
same_ports yes
Still does not work.
I configured outside interface as dc0 and internal as xl0
Any comments, suggestions, would be appriciated.
Thanks
Dave
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?NEBBKBOMILGEKHIBFECLOEABCLAA.drideout>