Date: Fri, 6 Oct 2000 07:28:31 -0400 From: "Mike" <mikenoc@mindspring.net> To: <questions@FreeBSD.org> Subject: Natd not working properlly. Message-ID: <000801c02f88$8f01ee20$b400a8c0@atl.mediaone.net>
next in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] Hello I am having problems getting natd to work correctly. I have BSD running as the server with 2 NIC cards one has the cable modem plugged into it. The other is pluged into the HUB. I also have a Windows box plugged into the hub. From the Windows box I asigned a private IP 192.168.0.5 and the gateway as the private IP 192.168.0.1 that I asigned on my FreeBSD box for the NIC going into the HUB. I also asigned the IP addresses for the name servers in TCP/IP on the windows box. From the Windows Box I can ping the gateway 192.168.0.1 and I can also ping the IP address asigned by my cable provider but I cannot ping past that or get web pages. I used the web sight http://www.mostgraveconcern.com/freebsd/ as a refference and below I have the configuration from my box. If anyone has any sugestions I would most apprecaite it. Thanks in advance, Mike F. ***** Kernel ****** options IPFIREWALL_DEFAULT_TO_ACCEPT #firewall options IPDIVERT #divert sockets options IPFIREWALL_VERBOSE #print information about #options "IPFIREWALL_VERBOSE_LIMIT=100" #limit verbosity options TCP_DROP_SYNFIN #drop TCP packets with SYN+FIN options TCP_RESTRICT_RST #restrict emission of TCP RST *** rc.conf **** gateway_enable="YES" firewall_enable="YES" # Set to YES to enable firewall functionality firewall_script="/etc/rc.firewall" # Which script to run to set up the firewall firewall_type="open" # Firewall type (see /etc/rc.firewall) firewall_quiet="YES" # Set to YES to suppress rule display natd_program="/sbin/natd" # path to natd, if you want a different one. natd_enable="YES" # Enable natd (if firewall_enable == YES). natd_interface="ep0" # Public interface or IPaddress to use. natd_flags="-f /etc/natd.conf" # Additional flags for natd. **** natd.conf ****** dynamic yes use_sockets yes same_ports yes **** IPFW **** bash# ipfw list 00100 allow ip from any to any via lo0 00200 deny ip from any to 127.0.0.0/8 65000 allow ip from any to any 65535 deny ip from any to any bash# [-- Attachment #2 --] <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META content="text/html; charset=iso-8859-1" http-equiv=Content-Type> <META content="MSHTML 5.00.2614.3500" name=GENERATOR> <STYLE></STYLE> </HEAD> <BODY bgColor=#ffffff> <DIV><FONT face=Arial size=2> Hello I am having problems getting natd to work correctly. I have BSD running as </FONT></DIV> <DIV><FONT face=Arial size=2>the server with 2 NIC cards one has the cable modem plugged into it. The other is pluged into the HUB. I also have a Windows box plugged into the hub. From the Windows box I asigned a private IP 192.168.0.5 and the gateway as the private IP 192.168.0.1 </FONT><FONT face=Arial size=2>that I asigned on my FreeBSD box for the NIC going into the HUB. I also asigned the IP addresses for the name servers in TCP/IP on the windows box.</FONT></DIV> <DIV><FONT face=Arial size=2>From the Windows Box I can ping the gateway 192.168.0.1 and I can also ping the IP address asigned by my cable provider but I cannot ping past that or get web pages. I used the web sight <A href="http://www.mostgraveconcern.com/freebsd/">http://www.mostgraveconcern.com/freebsd/</A> as a refference and below I have the configuration from my box. If anyone has any sugestions I would most apprecaite it.</FONT></DIV> <DIV> </DIV> <DIV><FONT face=Arial size=2> Thanks in advance,</FONT></DIV> <DIV> </DIV> <DIV><FONT face=Arial size=2> Mike F.</FONT></DIV> <DIV> </DIV> <DIV><FONT face=Arial size=2> ***** Kernel ******</FONT></DIV> <DIV> </DIV> <DIV><FONT face=Arial size=2>options IPFIREWALL_DEFAULT_TO_ACCEPT #firewall<BR>options IPDIVERT #divert sockets<BR>options IPFIREWALL_VERBOSE #print information about<BR>#options "IPFIREWALL_VERBOSE_LIMIT=100" #limit verbosity<BR>options TCP_DROP_SYNFIN #drop TCP packets with SYN+FIN<BR>options TCP_RESTRICT_RST #restrict emission of TCP RST</FONT></DIV> <DIV> </DIV> <DIV><FONT face=Arial size=2>*** rc.conf ****</FONT></DIV> <DIV> </DIV> <DIV><FONT face=Arial size=2>gateway_enable="YES"<BR>firewall_enable="YES" # Set to YES to enable firewall functionality<BR>firewall_script="/etc/rc.firewall" # Which script to run to set up the firewall<BR>firewall_type="open" # Firewall type (see /etc/rc.firewall)<BR>firewall_quiet="YES" # Set to YES to suppress rule display<BR>natd_program="/sbin/natd" # path to natd, if you want a different one.<BR>natd_enable="YES" # Enable natd (if firewall_enable == YES).<BR>natd_interface="ep0" # Public interface or IPaddress to use.<BR>natd_flags="-f /etc/natd.conf" # Additional flags for natd.<BR></FONT></DIV> <DIV><FONT face=Arial size=2>**** natd.conf ******</FONT></DIV> <DIV><FONT face=Arial size=2><BR>dynamic yes<BR>use_sockets yes<BR>same_ports yes</FONT></DIV> <DIV> </DIV> <DIV><FONT face=Arial size=2>**** IPFW ****</FONT></DIV> <DIV><FONT face=Arial size=2><BR>bash# ipfw list<BR>00100 allow ip from any to any via lo0<BR>00200 deny ip from any to 127.0.0.0/8<BR>65000 allow ip from any to any<BR>65535 deny ip from any to any<BR>bash#<BR></FONT></DIV> <DIV> </DIV> <DIV><FONT face=Arial size=2> </DIV></FONT> <DIV><FONT face=Arial size=2></FONT> </DIV></BODY></HTML>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?000801c02f88$8f01ee20$b400a8c0>