Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 8 Apr 2004 14:40:43 -0400
From:      "JJB" <Barbish3@adelphia.net>
To:        "RazorOnFreeBSD" <yann.luppo@attglobal.net>, <freebsd-questions@freebsd.org>
Subject:   RE: Internet 2
Message-ID:  <MIEPLLIBMLEEABPDBIEGOEHIFLAA.Barbish3@adelphia.net>
In-Reply-To: <07ab01c41d5d$714d6c80$8215670c@razorwork>

next in thread | previous in thread | raw e-mail | index | archive | help
You state.
"I have DSL and my ISP is AT&T, I have a static IP which means I
don't need to run PPP to connect."

That is not true for 4.9 and I have not read anything which changes
that for 5.x.

Is 5.1 an buildworld to existing system where your setup worked
previously? or install from scratch using cdrom? Explain.

-----Original Message-----
From: owner-freebsd-questions@freebsd.org
[mailto:owner-freebsd-questions@freebsd.org]On Behalf Of
RazorOnFreeBSD
Sent: Thursday, April 08, 2004 7:34 AM
To: freebsd-questions@freebsd.org
Subject: Internet 2

Hi everyone,

I bring an old post again because I have now more information to
give this.

My post was this one :

--------------------------------------------------------------------
------------------------------------------------------------
--------------------------------------------------------------------
------------------------------------------------------------

I just setup a freebsd box with the 5.1 release to be a
gateway/firewall.
The installation was smooth and to setup the gateway/firewall with
nat a lot of sources are available on Internet.
Here is my problem, I can't connect to Internet from the Freebsd
box.
I have DSL and my ISP is AT&T, I have a static IP wich means I don't
need to run PPP to connect.

FreeBSD Internet NIC is : 12.103.21.x

When I type ifconfig my NIC looks fine, up and running :

rl0 : 12.103.21.x

For information the freebsd box contains 2 NIC's one for Internet
the other for the LAN (192.168.1.1)

If I ping myself no problem everything's fine, but I can't ping a
web address. I don't know if it is possible under unix but I use to
"ping www.yahoo.com" for example to know if it's well connected. But
the best proof is when I try to install samba my freebsd gives a
time out reaching the samba server on the web....

I have setup a firewall_type="OPEN" because i'm still testing but I
also setup natd and gateway variables in the rc.conf file to what is
needed up to majority of websites about firewall and gateways with
Freebsd.
I also rebuilt the kernel up to those websites wich was fine, and I
created a natd.conf file.
One more thing I think I didn't use the Domain variable when I set
up the NIC from sysinstall.... don't know if it's important!
Well I don't understand why it doesn't work.... The tech guy from
at&t hotline told me it's easy as setup a LAN.... "yes you're right
my LAN works fine but not Internet!" :S

Please somebody help me !!!!

--------------------------------------------------------------------
------------------------------------------------------------
--------------------------------------------------------------------
------------------------------------------------------------

And I now have those outputs and conf file to go with :

--------------------------------------------------------------------
------------------------------------------------------------
--------------------------------------------------------------------
------------------------------------------------------------

Here is my "netstat -r" output :

Dest                        Gateway                    Flags
Refs
Use         Netif

Razor                      12.103.21.1              UGSc           2
105        rl0
12.103.21/24           link#1                       UC
1
0            rl0
12.103.21.1             link#1                       UHLW         3
2            rl0
localhost                   localhost                   UH
0
0            lo0
192.168.1                link#2                       UC
1
0            dc0
kitty.my.domain        00:06:5b:b4:41:1c     UHLW         0
0
dc0

------------------------------
ifconfig outputs :

rl0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
     inet 12.103.21.x netmask 0xffffff00 broadcast 12.103.21.255
     inet6 ...........
     ether ...........
     media: Ethernet autoselect (100baseTX <full duplex>)
     status: Active

dc0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
     inet 192.168.1.1 netmask 0xffffff00 broadcast 192.168.1.255
     inet6 ...........
     ether ...........
     media: Ethernet autoselect (10baseT/UTP)
     status: Active


------------------------------
resolv.conf :

domain            Razor
nameserver      12.127.16.83 #those two ip's are my current dns
server under
the windows station... they work.
nameserver      12.127.17.83

------------------------------
hosts :

::1                        localhost
localhost.my.domain
127.0.0.1            localhost
localhost.my.domain
192.168.1.1        Razor.my.domain             Razor
192.168.1.15      razor_work.my.domain    razor_work
192.168.1.16      Kitty.my.domain              Kitty

------------------------------
rc.conf :

defaultrouter="12.103.21.1"
gateway_enable="YES"hostname="Razor"

ifconfig_rl0="inet 12.103.21.x netmask 255.255.255.0"
ifconfig_dc0="inet 192.168.1.1 netmask 255.255.255.0"
inetd_enable="NO"
kern_securelevel="2"
kern_securelevel_enable="NO" # I did that because it was required to
rebuild
the kernel up to a website
keymap="fr.iso.acc"
linux_enable="YES"
nfs_server_enable="NO"
sendmail_enable="NO"
sshd_enable="NO"
usdb_enable="NO"
firewall_enable="YES"
firewall_type="OPEN"
firewall_quiet="NO"
natd_enable="YES"
natd_interface="rl0"
natd_flags="/etc/fw/natdy.conf"
tcp_drop_synfin="YES"

------------------------------
natdy.conf :

unregistered_only
interface rl0
use_sockets
punch_fw 2000:50

------------------------------
sysctl.conf :

net.inet.tcp.strict_rfc1918=1
net.inet.ip.check_interface=1
net.inet.tcp.blackhole=1
net.inet.udp.blackhole=2

Tell me if you need more information ????

(it was a lot of work to copy these, plz help me!)

Thanks.

razor.
_______________________________________________
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
"freebsd-questions-unsubscribe@freebsd.org"



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?MIEPLLIBMLEEABPDBIEGOEHIFLAA.Barbish3>