Skip site navigation (1)Skip section navigation (2) 
Date:      Sun, 10 Dec 2000 15:03:14 -0800
From:      "Crist J. Clark" <cjclark@reflexnet.net>
To:        Sean Peck <speck@newsindex.com>
Cc:        freebsd-questions@FreeBSD.ORG
Subject:   Re: Configuring Gateway/NAT on Freebsd
Message-ID:  <20001210150314.P96105@149.211.6.64.reflexcom.com>
In-Reply-To: <Pine.BSF.4.10.10012101425590.91853-100000@www.newsindex.com>; from speck@newsindex.com on Sun, Dec 10, 2000 at 02:32:24PM -0800
References:  <Pine.BSF.4.10.10012101425590.91853-100000@www.newsindex.com>
index | next in thread | previous in thread | raw e-mail 

[This is definately not something that belongs on -hackers. Cut from
the recipients.]

On Sun, Dec 10, 2000 at 02:32:24PM -0800, Sean Peck wrote:
> 
> I am trying to configure a FreeBSD 3.3 box to act as a gateway/NAT
> translater for my network.
> 
> I have added the following to the my rc.conf
> 
> ifconfig_tun0="inet 172.168.0.1  netmask 255.255.255.0"

This is almost certainly wrong. Isn't tun0 getting an IP through
ppp(8) or the like? I guess I could be wrong, since the above address
is in AOL's netblock. Do they have some odd service where you get a
fixed dial-in IP? But my best guess is that you meant to use an
RFC1918, unregistered address; that is not one.

> gateway_enabled="YES"
> natd_enabled="YES"
> natd_ingerface="tun0"
         ^
Typo, I assume.

> and tun0 to my network_interfaces list.
> 
> The box works fine on its own, but I am unable to get boxes in my
> 172.168.0.x space to work through it.  I am confused a bit on what I need
> to set my other boxes too, and if I am missing something on this box I
> must do as well.

You have not indicated you have ipfirewall(4) (ipfw(8)) up and
running. However, the -nat option with ppp(8) is probably a better
idea.

> Should I set my other boxes to gateway to this boxes 172 address, or to
> the real IP of this box?

The gateway of the local machines should be on their local network of
course.

> If it is in the 172 space, how is this box being
> informed it shoul be listening for it, since the only the tun0 is told it
> is attached to this IP, not the actual NIC... 

Your NIC on your private network should definately be getting an
address from ifconfig.

> Any help would be most appreciated.

You do seem very confused.
-- 
Crist J. Clark                           cjclark@alum.mit.edu


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
help

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001210150314.P96105>