From owner-freebsd-questions  Thu Sep 17 14:35:17 1998
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id OAA09888
          for freebsd-questions-outgoing; Thu, 17 Sep 1998 14:35:17 -0700 (PDT)
          (envelope-from owner-freebsd-questions@FreeBSD.ORG)
Received: from resnet.uoregon.edu (resnet.uoregon.edu [128.223.144.32])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA09678
          for <freebsd-questions@FreeBSD.ORG>; Thu, 17 Sep 1998 14:34:40 -0700 (PDT)
          (envelope-from dwhite@resnet.uoregon.edu)
Received: from localhost (dwhite@localhost)
          by resnet.uoregon.edu (8.8.8/8.8.8) with ESMTP id OAA04519;
          Thu, 17 Sep 1998 14:34:09 -0700 (PDT)
          (envelope-from dwhite@resnet.uoregon.edu)
Date: Thu, 17 Sep 1998 14:34:08 -0700 (PDT)
From: Doug White <dwhite@resnet.uoregon.edu>
To: chas <panda@peace.com.my>
cc: freebsd-questions@FreeBSD.ORG
Subject: Re: 2 NICs disable all network services. (Re: FBSD proxy between 
 firewall and LAN)
In-Reply-To: <3.0.32.19980918020828.009c9f0c@mail.peace.com.my>
Message-ID: <Pine.BSF.4.03.9809171432490.2759-100000@resnet.uoregon.edu>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Fri, 18 Sep 1998, chas wrote:

> Added second NIC :
> ------------------
> Our FreeBSD box was working fine with one NIC. Upon adding a second
> NIC, network services didn't work. The extra NIC was detected as dmesg 
> shows below :

Please explain.  Provide lots of details.  

> fxp0 <Intel EtherExpress Pro 10/100B Ethernet> rev 5 int a irq 9 on pci0:16:0
> fxp0: Ethernet address 00:a0:c9:e4:c2:ed
> fxp1 <Intel EtherExpress Pro 10/100B Ethernet> rev 2 int a irq 15 on pci0:18:0
> fxp1: Ethernet address 00:a0:c9:cf:b8:b2
> 
> I also added the following to /etc/rc.conf :
> 
> network_interfaces="fxp0 fxp1 lo0"
> ifconfig_fxp0="inet 202.184.153.5  netmask 255.255.255.0"
> ifconfig_fxp1="inet 10.0.0.1  netmask 255.255.255.0" 

Looks good to me.

> 1) rebuilt the kernel with OPTIONS IPFIREWALL enabled
> 2) set the following in /etc/rc.conf :
> 	firewall_enable="YES"
> 	firewall_type="OPEN"
> 	gateway_enable="YES"
> 3) /etc/rc.firewall was left as the default for "OPEN" which, if I 
>    understand this correctly, should let everything through :
>    $fwcmd add 100 pass all from any to any via lo0
>    $fwcmd add 200 deny all from any to 127.0.0.0/8
>    # Prototype setups.
>    if [ "${firewall_type}" = "open" -o "${firewall_type}" = "OPEN" ]; then
>          $fwcmd add 65000 pass all from any to any
> 
> This still didn't help. Again, dmesg and ifconfig report the NICs are there 
> but IP services are totally dead.

Turn on ipfw logging and see where things are going.

Doug White                               
Internet:  dwhite@resnet.uoregon.edu    | FreeBSD: The Power to Serve
http://gladstone.uoregon.edu/~dwhite    | www.freebsd.org


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message