Date: Fri, 7 Sep 2001 20:50:29 +0200 From: "Thibault Bautze" <rws_pd@gmx.de> To: <freebsd-net@freebsd.org> Subject: nat problems Message-ID: <002101c137cd$f9a5caa0$817b7b7b@my.network.net>
next in thread | raw e-mail | index | archive | help
Hello! I'm currently configuring a FreeBSD 4.2 firewall ( but my first target is a simple router ). I use PPP over ethernet for the Inet connection. To route packets between the Inet and my subnet I use ppp with nat enable yes, nat use_sockets yes and nat same_ports yes but without firewall rules. The connection between the subnet and the Inet works fine, but I still have one big problem: I cannot reach some websites if I'm sitting on my windows or freebsd box behind the firewall. www.gmx.de and www.icq.com for example cannot be opened, but I can easily open them with the webbrowser on the firewall. I found that you cannot ping this sites, even if I'm sitting on the firewall or connectet with my windows box directly to the internet. Here is the result for a ping: # ping www.gmx.de PING www.gmx.de (213.165.65.100): 56 data bytes 36 bytes from 62.156.128.226: Communication prohibited by filter Vr HL TOS Len ID Flg off TTL Pro cks Src Dst 4 5 00 5400 00ff 0 0000 fa 01 8d4c 217.1.yy.xx 213.165.65.100 --- www.gmx.de ping statistics --- 16 packets transmitted, 0 packets received, 100% packet loss 62.156.128.226 is in this case the other side of the ppp tunel, my ISP ( t-online, Germany if it can help ) But I'm not sure if it makes a difference, if you can ping them or not. I got the same result with ping www.microsoft.com ( bad example, I know ; ) ) , but I can open this site on my freebsd or windows box. Thanks, Thibault Bautze To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?002101c137cd$f9a5caa0$817b7b7b>