Date: Thu, 29 Jul 2004 10:27:05 -0400 From: Hakim Singhji <Hakim.Singhji@nychhc.org> To: Hakim Z.Singhji <system-administrator@earthlink.net>, Matthew Seaman <m.seaman@infracaninophile.co.uk> Cc: freebsd-questions@freebsd.org Subject: Re: HOWTO Ping LAN??? Message-ID: <20040729T102705Z_C5AF00120003@nychhc.org>
index | next in thread | raw e-mail
[-- Attachment #1 --]
Hi Matt,
You say that the only way I will be able to connect to my network is by tunneling.
This is not what I want to do, I thought I may be able to SSH, Telnet, www, etc.
from the outside to my default gateway and have the gateway pass SSH, Telnet,
www., or any other request to the machine on the private network by including the
"localhost.defaultgateway.domain.org" or something to that affect.
Does NAT Overloading only go one way???
Hakim Z. Singhji
Coordinating Mgr. / Infection Control
718-245-3923
hakim.singhji@nychhc.org
>>> Matthew Seaman <m.seaman@infracaninophile.co.uk> 7/29/2004 5:32:32 AM >>>
On Thu, Jul 29, 2004 at 01:40:02AM -0400, Hakim Z. Singhji wrote:
> Figure 1
>
> ***************
> * Internet *
> *24.199.1xx.xx*
> ***************
> ~ |
> ~ |
> *************** **************
> * Defaut GW * __ __ *Kids Machine*
> *192.68.0.1 * *192.68.0.3 *
> FreeBSD 4.10 * * Mandrake 10*
> *************** **************
> ~ |
> ~ |
> *****************
> *Wrk Station1*
> *192.68.0.2 *
> *Redhat 9 *
> *****************
>
> This is a rough diagram of the network... I would like to ssh, ping,
> etc. the machines behind the default gateway directly (without
> tunneling) from the outside the network (at work for example). Is this
> possible and if so how do I config. Keep in mind that my default
> gateway is FreeBSD. I know this may be a complicated project but if you
> could help that would help me greatly. Many thanks to everyone in advance.
I'm afraid that's not going to be possible with your current network
layout. If you want all of your machines to be accessible from the
Internet, then you'll need routable addresses on all of your machines.
I know you've said you don't want to use tunnelling, but
unfortunately, that's the only way you can access a private address
space as you have from outside it. A relatively simple way of doing
that is to ssh into your gateway box, and use the '-L' or '-R'
portforwarding options to create a tunnel to one of the internal
machines, and then ssh or otherwise connect through that tunnel: see
eg.
http://www.linux.ie/articles/tutorials/ssh.php
One other point: you're going to have problems if you're using
192.168.0.0 as the IP number on your FreeBSD machine. That's the
*network* address, and shouldn't be applied directly to any specific
machine. If you're running your internal network using 192.168.0.0/24
as the address space, then you have 254 addresses (from 192.168.0.1 to
192.168.0.254) to use for client machines, since 192.168.0.0 (network
address) and 192.168.0.255 (broadcast address) are reserved as part of
the networking setup.
Cheers,
Matthew
--
Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks
Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey Marlow
Tel: +44 1628 476614 Bucks., SL7 1TH UK
[-- Attachment #2 --]
0
C *H
40
01
0 +�0
*H
$00
0
*H
�0b1
0 UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CA0
040720133554Z
050720133554Z010USinghji10
U*Hakim10U
Hakim Singhji1'0% *H
hakim.singhji@nychhc.org1"0 *H
singhjih@nychhc.org00
*H
��0�hf "Y;tljPTܕ@=+@woÈf
{Z
g{�63ro禗)O- 8ZnCni8$ZMs*zWo>kVs"~g>!�J0H08U
10/hakim.singhji@nychhc.orgsinghjih@nychhc.org0
U
0�0
*H
��2P*afbZ=\�L|
!Zv�ldgOy2f~DoY|Gk~
[ѹt9ra;+!nLd^*<#PTDj;S&0-0�0
*H
�01
0 UZA10U
Western Cape10U Cape Town10U
Thawte Consulting1(0&U
Certification Services Division1$0"UThawte Personal Freemail CA1+0) *H
personal-freemail@thawte.com0
960101000000Z
201231235959Z01
0 UZA10U
Western Cape10U Cape Town10U
Thawte Consulting1(0&U
Certification Services Division1$0"UThawte Personal Freemail CA1+0) *H
personal-freemail@thawte.com00
*H
��0�id[qG
Qr^}-
{߅%u(t:B,c'{K~
ݹΖdnD|Mq @8�x^^v]nz|
KU)&j8$jDZڣyZ
�00U
00
*H
��~Ngb*M`o`Xa&R5\0J bB#dG)ߝ^l`q\yn�G
(|_#& sC%/u
Qkw0?0
0
*H
�01
0 UZA10U
Western Cape10U Cape Town10U
Thawte Consulting1(0&U
Certification Services Division1$0"UThawte Personal Freemail CA1+0) *H
personal-freemail@thawte.com0
030717000000Z
130716235959Z0b1
0 UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CA00
*H
��0�Ħ<UsUNʙZ
hup
[v
:aQP
0cZ,p+Z?qV˯<
6$*+w=+>@dקe*TH<a@
dr`�00U
0�0CU
<0:08642http://crl.thawte.com/ThawtePersonalFreemailCA.crl0
U
0)U
"0
0
10UPrivateLabel2-1380
*H
��HP
.
fgCL!6 -6/
P p<ab:~�
t%Pb'qW%ݩ9 Oe_N4[5MwV!x!5$
F]_eO100i0b1
0 UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CA
0 +�0 *H
1
*H
0
*H
1
040729102704Z0# *H
1vUGtv4|IgJSL0v *H
1i0g0
*H
(0
*H
0*H
�0
*H
0
*H
@0+0
*H
80+0
*H
�w
g}@'LD'rhPuH`
E.×bT]
oW`*M)d8IW^) [b"{
Q`J/F8!HU�*ZܢPTBG8S ]m
help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040729T102705Z_C5AF00120003>