From owner-freebsd-questions@FreeBSD.ORG Wed Oct 22 10:33:32 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 39BE316A4B3 for ; Wed, 22 Oct 2003 10:33:32 -0700 (PDT) Received: from newtonsecond.com (adsl-63-207-117-158.dsl.snfc21.pacbell.net [63.207.117.158]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2C0BF43F93 for ; Wed, 22 Oct 2003 10:33:30 -0700 (PDT) (envelope-from tristan11@mindspring.com) Received: from [64.174.64.218] (HELO mindspring.com) by newtonsecond.com (CommuniGate Pro SMTP 4.1.1) with ESMTP id 730675 for freebsd-questions@freebsd.org; Wed, 22 Oct 2003 10:33:29 -0700 Date: Wed, 22 Oct 2003 10:33:30 -0700 Content-Type: text/plain; delsp=yes; charset=US-ASCII; format=flowed Mime-Version: 1.0 (Apple Message framework v552) From: Michelle To: freebsd-questions@freebsd.org Content-Transfer-Encoding: 7bit In-Reply-To: Message-Id: X-Mailer: Apple Mail (2.552) Subject: Re: natd question X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 22 Oct 2003 17:33:32 -0000 On Tuesday, October 21, 2003, at 05:31 PM, gihl@i-am-gil-agno-virtucio.ph wrote: > > have you tried this reading this? > http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network- > natd.html > > dont forget to set the gateway IP address of your network clients to > the IP address of your FreeBSD nat server. yes. i've read the freebsd unleashed book, the freebsd.org docs, the man pages, as well as a freebsddiary.com article on setting up a nat server. the server is using freebsd 4.6.2 with nat and ipfw. i am working with a security engineer who set up our ipfw rules. i had him double check the rules and double check my nat configuration. he could not find any problems. when on the subnet, i am able to ping the linksys router which is connected to our dsl modem, but can't seem to get packets beyond the router. is there any way to test that the packets are actually being translated? > > > hope this helps... > > > > ----------------------------------------------------------------- > Gil Agno Virtucio > Janitor/Collector/Messenger > NEC System Integration and Construction Philippines Inc. 15th Floor > BPI Buendia Center ________.__ ___ ___ .____ > Gil Puyat Ave. Makati City 1200 / _____/|__|/ | \| | > Cellphone : +639163989695 / \ ___| / ~ \ | > Office Phone: +6328914167 \ \_\ \ \ Y / |___ > \______ /__|\___|_ /|_______ \ > \/ \/ \/ > ----------------------------------------------------------------- > > > -----Original Message----- > From: Michelle [mailto:tristan11@mindspring.com] > Sent: Wednesday, October 22, 2003 6:00 AM > To: freebsd-questions@freebsd.org > Subject: natd question > > > i am running freebsd 4.6.2. i have 2 nic cards on the machine, one > which is the external interface and connects to a router which > connects to dsl. the other is internal interface for our subnet. i > have enabled natd on the machine, but still cannot get packets out > when on the subnet. i can ssh to the external interface, but can't > ssh to a machine that is outside of our network. i checked ps aux to > make sure natd is running and checked the firewall rules to make sure > the natd divert rule is there. is there something else i need to > configure? > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > ____________________________________________________________________ > ** Get your free E-Mail account at WWW.DIGITELONE.COM ** > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" >