From owner-freebsd-questions@FreeBSD.ORG Thu Apr 8 11:41:15 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8FC7316A4CE for ; Thu, 8 Apr 2004 11:41:15 -0700 (PDT) Received: from mta7.adelphia.net (mta7.adelphia.net [68.168.78.193]) by mx1.FreeBSD.org (Postfix) with ESMTP id AAE9543D2D for ; Thu, 8 Apr 2004 11:41:14 -0700 (PDT) (envelope-from Barbish3@adelphia.net) Received: from barbish ([67.20.101.71]) by mta9.adelphia.net (InterMail vM.5.01.06.08 201-253-122-130-108-20031117) with SMTP id <20040408184044.HCJC26615.mta9.adelphia.net@barbish>; Thu, 8 Apr 2004 14:40:44 -0400 From: "JJB" To: "RazorOnFreeBSD" , Date: Thu, 8 Apr 2004 14:40:43 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) In-Reply-To: <07ab01c41d5d$714d6c80$8215670c@razorwork> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 Importance: Normal Subject: RE: Internet 2 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Barbish3@adelphia.net List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Apr 2004 18:41:15 -0000 You state. "I have DSL and my ISP is AT&T, I have a static IP which means I don't need to run PPP to connect." That is not true for 4.9 and I have not read anything which changes that for 5.x. Is 5.1 an buildworld to existing system where your setup worked previously? or install from scratch using cdrom? Explain. -----Original Message----- From: owner-freebsd-questions@freebsd.org [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of RazorOnFreeBSD Sent: Thursday, April 08, 2004 7:34 AM To: freebsd-questions@freebsd.org Subject: Internet 2 Hi everyone, I bring an old post again because I have now more information to give this. My post was this one : -------------------------------------------------------------------- ------------------------------------------------------------ -------------------------------------------------------------------- ------------------------------------------------------------ I just setup a freebsd box with the 5.1 release to be a gateway/firewall. The installation was smooth and to setup the gateway/firewall with nat a lot of sources are available on Internet. Here is my problem, I can't connect to Internet from the Freebsd box. I have DSL and my ISP is AT&T, I have a static IP wich means I don't need to run PPP to connect. FreeBSD Internet NIC is : 12.103.21.x When I type ifconfig my NIC looks fine, up and running : rl0 : 12.103.21.x For information the freebsd box contains 2 NIC's one for Internet the other for the LAN (192.168.1.1) If I ping myself no problem everything's fine, but I can't ping a web address. I don't know if it is possible under unix but I use to "ping www.yahoo.com" for example to know if it's well connected. But the best proof is when I try to install samba my freebsd gives a time out reaching the samba server on the web.... I have setup a firewall_type="OPEN" because i'm still testing but I also setup natd and gateway variables in the rc.conf file to what is needed up to majority of websites about firewall and gateways with Freebsd. I also rebuilt the kernel up to those websites wich was fine, and I created a natd.conf file. One more thing I think I didn't use the Domain variable when I set up the NIC from sysinstall.... don't know if it's important! Well I don't understand why it doesn't work.... The tech guy from at&t hotline told me it's easy as setup a LAN.... "yes you're right my LAN works fine but not Internet!" :S Please somebody help me !!!! -------------------------------------------------------------------- ------------------------------------------------------------ -------------------------------------------------------------------- ------------------------------------------------------------ And I now have those outputs and conf file to go with : -------------------------------------------------------------------- ------------------------------------------------------------ -------------------------------------------------------------------- ------------------------------------------------------------ Here is my "netstat -r" output : Dest Gateway Flags Refs Use Netif Razor 12.103.21.1 UGSc 2 105 rl0 12.103.21/24 link#1 UC 1 0 rl0 12.103.21.1 link#1 UHLW 3 2 rl0 localhost localhost UH 0 0 lo0 192.168.1 link#2 UC 1 0 dc0 kitty.my.domain 00:06:5b:b4:41:1c UHLW 0 0 dc0 ------------------------------ ifconfig outputs : rl0: flags=8843 mtu 1500 inet 12.103.21.x netmask 0xffffff00 broadcast 12.103.21.255 inet6 ........... ether ........... media: Ethernet autoselect (100baseTX ) status: Active dc0: flags=8843 mtu 1500 inet 192.168.1.1 netmask 0xffffff00 broadcast 192.168.1.255 inet6 ........... ether ........... media: Ethernet autoselect (10baseT/UTP) status: Active ------------------------------ resolv.conf : domain Razor nameserver 12.127.16.83 #those two ip's are my current dns server under the windows station... they work. nameserver 12.127.17.83 ------------------------------ hosts : ::1 localhost localhost.my.domain 127.0.0.1 localhost localhost.my.domain 192.168.1.1 Razor.my.domain Razor 192.168.1.15 razor_work.my.domain razor_work 192.168.1.16 Kitty.my.domain Kitty ------------------------------ rc.conf : defaultrouter="12.103.21.1" gateway_enable="YES"hostname="Razor" ifconfig_rl0="inet 12.103.21.x netmask 255.255.255.0" ifconfig_dc0="inet 192.168.1.1 netmask 255.255.255.0" inetd_enable="NO" kern_securelevel="2" kern_securelevel_enable="NO" # I did that because it was required to rebuild the kernel up to a website keymap="fr.iso.acc" linux_enable="YES" nfs_server_enable="NO" sendmail_enable="NO" sshd_enable="NO" usdb_enable="NO" firewall_enable="YES" firewall_type="OPEN" firewall_quiet="NO" natd_enable="YES" natd_interface="rl0" natd_flags="/etc/fw/natdy.conf" tcp_drop_synfin="YES" ------------------------------ natdy.conf : unregistered_only interface rl0 use_sockets punch_fw 2000:50 ------------------------------ sysctl.conf : net.inet.tcp.strict_rfc1918=1 net.inet.ip.check_interface=1 net.inet.tcp.blackhole=1 net.inet.udp.blackhole=2 Tell me if you need more information ???? (it was a lot of work to copy these, plz help me!) Thanks. razor. _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"