From owner-freebsd-questions  Thu Apr 18  3:26:59 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from web11406.mail.yahoo.com (web11406.mail.yahoo.com [216.136.131.236])
	by hub.freebsd.org (Postfix) with SMTP id 57D7337B417
	for <freebsd-questions@freebsd.org>; Thu, 18 Apr 2002 03:26:55 -0700 (PDT)
Message-ID: <20020418102655.55019.qmail@web11406.mail.yahoo.com>
Received: from [202.150.78.242] by web11406.mail.yahoo.com via HTTP; Thu, 18 Apr 2002 03:26:55 PDT
Date: Thu, 18 Apr 2002 03:26:55 -0700 (PDT)
From: "saifuddin Abd. Salam" <saif_addin@yahoo.com>
Subject: Router/Gateway
To: freebsd-questions@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

I have setup the pc router/gateway with this
conditions:
1. I have added the options into kernel, and compiled
too:
    a. options IPFILTER
    b. options IPFILTER_LOG
    c. options IPFIREWALL_DEFAULT_TO_ACCEPT

2. In the rc.conf file, I have these lines:
    a. defaultrouter="my.internet.ip.default.gateway"
    b. gateway_enable="YES"
    c. hostname="my.hostname"
    d. network_interface="xl0 lo0 xl1"
    e. ifconfig_xl0="inet x.x.x.x netmask
255.255.255.0"
    f. ifconfig_xl1="inet y.y.y.y netmask
255.255.255.0"
    g. ipnat_enable="YES"
    h. ipnat_rules="/etc/ipnat.rules"
    i. ipfilter_rules="/etc/ipf.rules"
     ...
     ...
3. The ipnat.rules has these rules:
    a. map xl0 x.x.x.0/24 -> 0.0.0.0/32 portmap
tcp/udp auto
    b. map xl0 x.x.x.0/24 -> 0.0.0.0/32
    c. rdr xl0 0.0.0.0/32 port 80 -> my.proxy.op port
8080

4. Meanwhile my ipf rules was blank

5. Ping from router/gateway to host in internal
network is ok.
6. ping from host internal network to router/gateway
is ok

Problems:
Ping, browsing from host internal network into outside
the world was failed

Have the idea to solve?

thanks
regards
Saifuddin





__________________________________________________
Do You Yahoo!?
Yahoo! Tax Center - online filing with TurboTax
http://taxes.yahoo.com/

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message