From owner-freebsd-questions  Sun Dec 10 15: 3:21 2000
From owner-freebsd-questions@FreeBSD.ORG  Sun Dec 10 15:03:17 2000
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mailhost01.reflexnet.net (mailhost01.reflexnet.net [64.6.192.82])
	by hub.freebsd.org (Postfix) with ESMTP id AF59E37B698
	for <freebsd-questions@freebsd.org>; Sun, 10 Dec 2000 15:03:17 -0800 (PST)
Received: from 149.211.6.64.reflexcom.com ([64.6.211.149]) by mailhost01.reflexnet.net  with Microsoft SMTPSVC(5.5.1877.197.19);
	 Sun, 10 Dec 2000 15:01:41 -0800
Received: (from cjc@localhost)
	by 149.211.6.64.reflexcom.com (8.11.0/8.11.0) id eBAN3Ek17011;
	Sun, 10 Dec 2000 15:03:14 -0800 (PST)
	(envelope-from cjc)
Date: Sun, 10 Dec 2000 15:03:14 -0800
From: "Crist J. Clark" <cjclark@reflexnet.net>
To: Sean Peck <speck@newsindex.com>
Cc: freebsd-questions@FreeBSD.ORG
Subject: Re: Configuring Gateway/NAT on Freebsd
Message-ID: <20001210150314.P96105@149.211.6.64.reflexcom.com>
Reply-To: cjclark@alum.mit.edu
References: <Pine.BSF.4.10.10012101425590.91853-100000@www.newsindex.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 1.0i
In-Reply-To: <Pine.BSF.4.10.10012101425590.91853-100000@www.newsindex.com>; from speck@newsindex.com on Sun, Dec 10, 2000 at 02:32:24PM -0800
Sender: cjc@149.211.6.64.reflexcom.com
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

[This is definately not something that belongs on -hackers. Cut from
the recipients.]

On Sun, Dec 10, 2000 at 02:32:24PM -0800, Sean Peck wrote:
> 
> I am trying to configure a FreeBSD 3.3 box to act as a gateway/NAT
> translater for my network.
> 
> I have added the following to the my rc.conf
> 
> ifconfig_tun0="inet 172.168.0.1  netmask 255.255.255.0"

This is almost certainly wrong. Isn't tun0 getting an IP through
ppp(8) or the like? I guess I could be wrong, since the above address
is in AOL's netblock. Do they have some odd service where you get a
fixed dial-in IP? But my best guess is that you meant to use an
RFC1918, unregistered address; that is not one.

> gateway_enabled="YES"
> natd_enabled="YES"
> natd_ingerface="tun0"
         ^
Typo, I assume.

> and tun0 to my network_interfaces list.
> 
> The box works fine on its own, but I am unable to get boxes in my
> 172.168.0.x space to work through it.  I am confused a bit on what I need
> to set my other boxes too, and if I am missing something on this box I
> must do as well.

You have not indicated you have ipfirewall(4) (ipfw(8)) up and
running. However, the -nat option with ppp(8) is probably a better
idea.

> Should I set my other boxes to gateway to this boxes 172 address, or to
> the real IP of this box?

The gateway of the local machines should be on their local network of
course.

> If it is in the 172 space, how is this box being
> informed it shoul be listening for it, since the only the tun0 is told it
> is attached to this IP, not the actual NIC... 

Your NIC on your private network should definately be getting an
address from ifconfig.

> Any help would be most appreciated.

You do seem very confused.
-- 
Crist J. Clark                           cjclark@alum.mit.edu


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message