From owner-freebsd-questions@FreeBSD.ORG  Tue Apr 15 13:31:24 2003
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 833B037B404
	for <freebsd-questions@freebsd.org>;
	Tue, 15 Apr 2003 13:31:24 -0700 (PDT)
Received: from smtp-out.comcast.net (smtp-out.comcast.net [24.153.64.110])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 9542143FBD
	for <freebsd-questions@freebsd.org>;
	Tue, 15 Apr 2003 13:31:23 -0700 (PDT)	(envelope-from jimmy@dmech.com)
Received: from dmech (12-224-169-234.client.attbi.com [12.224.169.234])
 by mtaout10.icomcast.net
 (iPlanet Messaging Server 5.2 HotFix 1.14 (built Mar 18 2003))
 with SMTP id <0HDE001TYJGAMA@mtaout10.icomcast.net> for
 freebsd-questions@freebsd.org; Tue, 15 Apr 2003 16:26:39 -0400 (EDT)
Date: Tue, 15 Apr 2003 13:25:40 -0700
From: James D Fowler <jimmy@dmech.com>
To: freebsd-questions@freebsd.org
Message-id: <PBECJMAJMCMLAGIFAJCHGEDOCBAA.jimmy@dmech.com>
MIME-version: 1.0
X-MIMEOLE: Produced By Microsoft MimeOLE V5.50.4133.2400
X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0)
Content-type: text/plain; charset=iso-8859-1
Content-transfer-encoding: 7BIT
Importance: Normal
X-Priority: 3 (Normal)
X-MSMail-priority: Normal
Subject: natd and arp
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Apr 2003 20:31:24 -0000

Hi,
I am trying to set up a system running release 4.6 to act as a gateway for a
network that doesn't have enough ip's (public).
I have re-compiled the kernel with ipfirewall and ipdivert.
It is running in the open mode for ipfw.
It has two interfaces dc0 connected to the wan and rl0 on the private net.

I keep receiving /kernel: arp: 192.168.1.2 (and other priv ip's )is on rl0
but got reply on (mac address of dc0)

it seems to be functioning as far as the nat and routing are concerned.

My concern is the arp messages, and have I missed something in the conf.

I would be grateful for any advise.
Thanx,
jimmy

rc.conf:

gatway_enable="yes"
firewall_enable="yes"
firewall_script="/etc/rc.firewall"
firewall type="open"
firewall_logging="yes"
natd_program="/sbin/natd"
natd_enable="yes"
natd_interface="dc0"
natd_flags="-u -l"

rc.firewall:

in the open section I modified the natd rule to:
${fwcmd} add 50 divert natd all from any to any via ${natd_interface}