From owner-freebsd-questions Wed Sep 19 13:59:45 2001 Delivered-To: freebsd-questions@freebsd.org Received: from po3.wam.umd.edu (po3.wam.umd.edu [128.8.10.165]) by hub.freebsd.org (Postfix) with ESMTP id 18DB137B417 for ; Wed, 19 Sep 2001 13:59:36 -0700 (PDT) Received: from rac1.wam.umd.edu (IDENT:root@rac1.wam.umd.edu [128.8.10.141]) by po3.wam.umd.edu (8.9.3/8.9.3) with ESMTP id QAA01366; Wed, 19 Sep 2001 16:59:31 -0400 (EDT) Received: from rac1.wam.umd.edu (IDENT:sendmail@localhost [127.0.0.1]) by rac1.wam.umd.edu (8.9.3/8.9.3) with SMTP id QAA06230; Wed, 19 Sep 2001 16:59:31 -0400 (EDT) Received: from localhost (culverk@localhost) by rac1.wam.umd.edu (8.9.3/8.9.3) with ESMTP id QAA06226; Wed, 19 Sep 2001 16:59:31 -0400 (EDT) X-Authentication-Warning: rac1.wam.umd.edu: culverk owned process doing -bs Date: Wed, 19 Sep 2001 16:59:31 -0400 (EDT) From: Kenneth Wayne Culver To: "Matthew T. Lager" Cc: freebsd-questions@FreeBSD.ORG Subject: Re: NATD Problem... In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Usually, you connect the interface that you want to go to the outside world directly to the outside world, not through the hub, then you connect the internal network interface to the hub or switch. Ken On Wed, 19 Sep 2001, Matthew T. Lager wrote: > Each interface must be hooked into different hubs? Must these hubs be > complete seperate? > > On Wed, 19 Sep 2001, Kenneth Wayne Culver wrote: > > > You probably have both interfaces hooked to the same hub or switch > > > > Ken > > > > On Wed, 19 Sep 2001, Matthew T. Lager wrote: > > > > > I just installed a fresh version of FreeBSD 4.4RC5 on an Intel machine. I > > > configured NATD. The setup is as follows: > > > > > > KERNEL: > > > options IPFIREWALL > > > options IPDIVERT > > > > > > /etc/rc.conf: > > > gateway_enable="YES" > > > firewall_enable="YES" > > > firewall_type="OPEN" > > > natd_enable="YES" > > > natd_interface="xl0" > > > natd_flags="" > > > > > > ifconfig -a: > > > xl0: flags=8843 mtu 1500 > > > inet6 fe80::250:4ff:fe6c:daa7%xl0 prefixlen 64 scopeid 0x1 > > > inet 204.210.40.137 netmask 0xffffff00 broadcast 255.255.255.255 > > > ether 00:50:04:6c:da:a7 > > > media: Ethernet 10baseT/UTP (10baseT/UTP ) > > > > > > ep0: flags=8843 mtu 1500 > > > inet 192.168.0.1 netmask 0xffffff00 broadcast 192.168.0.255 > > > inet6 fe80::220:afff:fe12:a929%ep0 prefixlen 64 scopeid 0x2 > > > ether 00:20:af:12:a9:29 > > > media: Ethernet 10baseT/UTP > > > > > > The true internet IP address is on xl0 and the LAN IP address is on ep0. > > > NATD functions fine, but I receive hundreds and hundreds of error messages > > > in my logfile: > > > > > > Sep 19 06:48:46 firewall /kernel: arp: 192.168.0.101 is on ep0 but got > > > reply from 00:01:03:e6:a4:d5 on xl0 > > > Sep 19 06:48:47 firewall /kernel: arp: 204.210.40.1 is on xl0 but got > > > reply from 08:00:3e:07:07:ab on ep0 > > > Sep 19 06:49:18 firewall last message repeated 20 times > > > Sep 19 06:51:19 firewall last message repeated 63 times > > > Sep 19 07:01:20 firewall last message repeated 290 times > > > Sep 19 01:57:56 firewall /kernel: arp: 192.168.0.100 is on ep0 but got > > > reply from 00:02:e3:08:49:d8 on xl0 > > > > > > and so on. What the heck is wrong? Thanks! > > > > > > Matt Lager > > > mlager@lynxcom.net > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > with "unsubscribe freebsd-questions" in the body of the message > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message