From owner-freebsd-questions@FreeBSD.ORG Sun Apr 13 10:34:20 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C162A37B404 for ; Sun, 13 Apr 2003 10:34:20 -0700 (PDT) Received: from stargate.northwindcom.net (110-47-237-24.gci.net [24.237.47.110]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6E60B44051 for ; Sun, 13 Apr 2003 10:34:14 -0700 (PDT) (envelope-from akbeech@northwindcom.net) Received: from admin (admin.northwindcom.net [192.168.10.2]) by stargate.northwindcom.net (Postfix) with ESMTP id 8D8F2347B; Sun, 13 Apr 2003 09:34:13 -0800 (AKDT) From: "Lists" To: "John C" Date: Sun, 13 Apr 2003 09:33:58 -0800 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) In-Reply-To: X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Importance: Normal cc: freebsd-questions@freebsd.org Subject: RE: Trouble configuring network gateway X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 13 Apr 2003 17:34:21 -0000 -----Original Message----- From: owner-freebsd-questions@freebsd.org [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of John C Sent: Saturday, April 12, 2003 5:14 PM To: freebsd-questions@freebsd.org Subject: Trouble configuring network gateway Hello, I am attempting to turn a PC into a gateway/firewall for my home network. My ISP is Comcast ... So whatever ramifications therein, for better or worse, apply to my predicament ... I've gotten both interfaces up and working, but I can't seem to get it to switch packets from within the subnet out into the internet. The kernel is pretty much GENERIC 4.7, except with the GATEWAY option set, plus with net.link.ether.bridge=1 In sysctl.conf My configuration is as follows: Gateway machine: "argonath" External network interface: sis0 12.235.54.203 (netgear card, ip provided by DHCP) Default route: 12.235.54.129 (presumably my cable modem) Private subnet interface: rl0 192.168.0.1 Secondary subnetted machine "shelob": Interface 192.168.0.2 Default route: 192.168.0.1 I can ping & ssh to "argonath" from "shelob", and can reach the internet from argonath's rl0 ... But like I said, the gateway action isn't happening. One other thing I found odd is that when my secondary machine is plugged directly into the Comcast subnet, it reports a default route of 12.235.36.1, which seems more right, but I don't have experience enough in these matters to say, and what documentation I've found isn't specific enough to give me a clue about how to solve this problem ... Please help? Thanks, John You need to set up network address translation. The following section from the handbook should help you: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/natd.html Beech ------------------------------------------------------------------- Beech Rintoul - Network Administrator - akbeech@northwindcom.net /"\ ASCII Ribbon Campaign | NorthWind Communications \ / - NO HTML/RTF in e-mail | X - NO Word docs in e-mail | Anchorage, AK 99518-1841 No More Spam! http://www.knockmail.com/default.asp?AID=B0R00073 / \ -----------------------------------------------------------------