From owner-freebsd-questions Wed May 9 6:41:17 2001 Delivered-To: freebsd-questions@freebsd.org Received: from hvmta02-stg.us.psimail.psi.net (hvmta02-ext.us.psimail.psi.net [38.202.36.30]) by hub.freebsd.org (Postfix) with ESMTP id DE2A837B422 for ; Wed, 9 May 2001 06:41:12 -0700 (PDT) (envelope-from drideout@cssnow.com) Received: from dave ([64.135.40.35]) by hvmta02-stg.us.psimail.psi.net (InterMail vM.4.01.02.17 201-229-119) with SMTP id <20010509134112.EPGM12612.hvmta02-stg.us.psimail.psi.net@dave> for ; Wed, 9 May 2001 09:41:12 -0400 From: "Dave Rideout" To: "FreeBSD Questions" Subject: NATD Date: Wed, 9 May 2001 09:35:14 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-Mimeole: Produced By Microsoft MimeOLE V5.00.3018.1300 Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I cant seem to get my cable modem connection working. I did the following to my system 1. Edited Kernal and added options IPFIREWALL #firewall options IPDIVERT #divert sockets options IPFIREWALL_VERBOSE #print information about # dropped packets options "IPFIREWALL_VERBOSE_LIMIT=100" #limit verbosity options TCP_DROP_SYNFIN #drop TCP packets with SYN+FIN options TCP_RESTRICT_RST #restrict emission of TCP RST options "ICMP_BANDLIM" 2. Then I recompiled Kernel I edited the rc.conf file and added this. gateway_enable="YES" # Set to YES if this host will be a gateway. firewall_enable="YES" # Set to YES to enable firewall functionality firewall_script="/etc/rc.firewall" # Which script to run to set up the firewall firewall_type="open" # Firewall type (see /etc/rc.firewall) firewall_quiet="NO" # Set to YES to suppress rule display natd_program="/sbin/natd" # path to natd, if you want a different one. natd_enable="YES" # Enable natd (if firewall_enable == YES). natd_interface="dc0" # Public interface or IPaddress to use. natd_flags="-f /etc/natd.conf" # Additional flags for natd. tcp_drop_synfin="YES" # Set to YES to drop TCP packets with SYN+FIN # NOTE: this violates the TCP specification tcp_restrict_rst="YES" # Set to YES to restrict emission of RST 3. Added this to natd.conf use_sockets yes same_ports yes Still does not work. I configured outside interface as dc0 and internal as xl0 Any comments, suggestions, would be appriciated. Thanks Dave To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message