From owner-freebsd-questions@FreeBSD.ORG Wed Feb 25 06:49:59 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id F25C316A4CE for ; Wed, 25 Feb 2004 06:49:58 -0800 (PST) Received: from out1.smtp.messagingengine.com (out1.smtp.messagingengine.com [66.111.4.25]) by mx1.FreeBSD.org (Postfix) with ESMTP id C354D43D39 for ; Wed, 25 Feb 2004 06:49:58 -0800 (PST) (envelope-from nkinkade@fastmail.fm) X-Sasl-enc: uU2kY2WYRD76pwENCSP8OA 1077720597 Received: from [206.26.199.146] (unknown [206.27.244.214]) by www.fastmail.fm (Postfix) with ESMTP id DED5C613DA8; Wed, 25 Feb 2004 09:49:56 -0500 (EST) Received: from nkinkade by [206.26.199.146] with local (Exim 4.12) id 1Aw0Lv-000EV7-00; Wed, 25 Feb 2004 08:49:35 -0600 Date: Wed, 25 Feb 2004 08:49:35 -0600 From: Nathan Kinkade To: stefan@swebase.com Message-ID: <20040225144935.GD11671@nkinkade.bmp.ub> Mail-Followup-To: stefan@swebase.com, freebsd-questions@freebsd.org References: <0ec101c3fb85$ed7d7470$702450d5@swebasestefan> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="6TME3aayZmn2Ikqb" Content-Disposition: inline In-Reply-To: <0ec101c3fb85$ed7d7470$702450d5@swebasestefan> User-Agent: Mutt/1.4.1i Sender: Nathan Kinkade cc: freebsd-questions@freebsd.org Subject: Re: help with ipfw X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Nathan Kinkade List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 25 Feb 2004 14:49:59 -0000 --6TME3aayZmn2Ikqb Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Feb 25, 2004 at 10:58:32AM +0100, stefan@swebase.com wrote: > Hi > I've setup a box here to act as a router/firewall for a bunch of > servers that will be behind it. Both nics seem to respond nicely but > only the first one thats connected to the outside was able to be > configured from sysinstall the second one thats connected to a, right > now empty, switch i had to set myself with ifconfig dc0 inet but > i need to set gateway and so on for it. Where can i do this? Also, if > it now IS correctly configured, how come it wont route packets? I > hooked up the office wlan to it and set an allow any to any rule but > it still wont work. >=20 > Med v=E4nliga h=E4lsningar >=20 > Stefan Midjich, Swebase AB To set a default gateway, you can issue the follwing command: # route add default To make sure it gets set on each reboot you define a default gateway in your /etc/rc.conf file with a line like: defaultrouter=3D"" If you want the machine to act as a router then you need to turn on ip forwarding. You can do this immediately by issuing the following command: # sysctl net.inet.ip.forwarding=3D1 =2E.. and then you can add the following line to /etc/rc.conf to make sure that this sysctl is set on each reboot: gateway_enable=3D"YES" Nathan --=20 gpg --keyserver pgp.mit.edu --recv-keys D8527E49 --6TME3aayZmn2Ikqb Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQFAPLX/O0ZIEthSfkkRAiN2AJ9ni+oQHla54L0hzOHGMLf5pi78mACaAlRL +4u+6BL7DMUdLRvxZXvBpdg= =ggio -----END PGP SIGNATURE----- --6TME3aayZmn2Ikqb--