From owner-freebsd-security  Wed Nov  7 18:50:29 2001
Delivered-To: freebsd-security@freebsd.org
Received: from clmboh1-smtp3.columbus.rr.com (clmboh1-smtp3.columbus.rr.com [65.24.0.112])
	by hub.freebsd.org (Postfix) with ESMTP id 9EFE837B405
	for <freebsd-security@FreeBSD.ORG>; Wed,  7 Nov 2001 18:50:26 -0800 (PST)
Received: from vectra (dhcp235214.columbus.rr.com [204.210.235.214])
	by clmboh1-smtp3.columbus.rr.com (8.11.2/8.11.2) with SMTP id fA82k7T27956;
	Wed, 7 Nov 2001 21:46:07 -0500 (EST)
Message-Id: <4.1.20011107214347.0091ce80@pop.service.ohio-state.edu>
X-Sender: kennsmit@none (Unverified)
X-Mailer: QUALCOMM Windows Eudora Pro Version 4.1 
Date: Wed, 07 Nov 2001 21:45:43 -0500
To: freebsd-security@FreeBSD.ORG
From: K Smith <kennsmit@gcfn.com>
Subject: Re:firewall question 
Cc: tomg@trancer.com
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org


Tom:

I would suggest double checking each IP configuration (including subnet mask).
The next step is to use basic tools such as ping, traceroute and arp to
determine the behavior of your network. Utilize a traffic analyzer such as
tcpdump or ethereal and an ethernet hub (if you are using a switch) if you
haven't discovered the source of the problem using the previous steps. Your
problem could be complex, but will most likely be caused by a simple
configuration error.

BTW: You would probably get a better response posting this to a more general
Q&A list, as it doesn't particularly pertain to security.

Good Luck!
ks

>I've been playing with setting up a firewall. This is the setup: 
>The firewall PC is running FreeBSD 4.4 with the default 'simple' firewall 
>running. There are two ethernet cards in it, one at IP 206.147.211.9 talking 
>to the outside network. The other ethernet card is using IP 10.0.0.1 and is 
>talking to an internel network of two PCs. 
>One PC is running FreeBSD 4.4 and is at IP 10.0.0.2 and the other PC is 
>running Win98 and is at IP 10.0.0.3. Both are using 10.0.0.1 as the default 
>gateway. 
>If both machines are plugged into the network and running everything seems to 
>be working fine. However as soon as I shut down the Win98 box or unplug it 
>from the network, the FreeBSD machine can't communicate out of the firewall 
>anymore. Plug the Win98 box back in and it starts working again. 
>Any suggestions? TIA
>-- 
>Tom Greenwalt (F.O.E.) Trancer Software Inc. tomg@trancer.com 
>9099 7th Street NE http://www.trancer.com/ 
>Minneapolis, MN 55434-1113 http://www.trancer.com/~tomg 
>---- When I'm good I'm very good, when I'm bad I'm better, ---->---------- But
when I'm evil you better run. ------------- 


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message