From owner-freebsd-questions Fri Mar 10 15:17:44 2000 Delivered-To: freebsd-questions@freebsd.org Received: from ren.sasknow.com (h139-142-245-96.ss.fiberone.net [139.142.245.96]) by hub.freebsd.org (Postfix) with ESMTP id 44FA137B7BF for ; Fri, 10 Mar 2000 15:17:39 -0800 (PST) (envelope-from ryan@sasknow.com) Received: from localhost (ryan@localhost) by ren.sasknow.com (8.9.3/8.9.3) with ESMTP id RAA07804 for ; Fri, 10 Mar 2000 17:17:35 -0600 (CST) (envelope-from ryan@sasknow.com) Date: Fri, 10 Mar 2000 17:17:35 -0600 (CST) From: Ryan Thompson To: freebsd-questions@freebsd.org Subject: Funny routing problem... Message-ID: Organization: SaskNow Technologies [www.sasknow.com] MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hi everybody. After having moved some equipment around (and upgraded several FreeBSD systems), I seem to have lost the ability to route between two particular machines: The gateway machine has two interfaces. pn0 for 10.0.0.0/8, ep0 for my public network. Packet forwarding is enabled in the kernel. Running 3.4-STABLE as of a few days ago. Firewall enabled, set to OPEN. Static route to the public IP of the internal machine set to 10.0.0.2. The internal machine has one interface, dc0 set to 10.0.0.2, netmask 0xff000000. Aliased one IP in the public network, netmask 0xffffffff. Running -CURRENT. Packet forwarding also enabled, here. lo0 interfaces are correctly configured on both systems, and both systems can talk to each other through the pn0/dc0 interfaces on either set of network numbers. NFS mounts between the two work like a charm. However, while the internal machine can reach the gateway fine, it can not reach any outside hosts. When I try tcpdump on the gateway machine for the ep0 (external) interface, and try to ping from the internal machine to an outside host, I see echo requests being sent, but no echo replies being received FROM the outside host. (Yes, pings from the gateway work fine) AND, I can ping/telnet/ssh/whatever very nicely FROM outside hosts, TO the internal machine (through the gateway), using the public IP address or hostname of the internal machine. I'm using static routes on both machines, and the routing tables look fine. I'm not using NAT. I'm at a loss, here, people... Any suggestions on how to regain outgoing connectivity from my internal machine? -- Ryan Thompson Systems Administrator, Accounts Phone: +1 (306) 664-1161 SaskNow Technologies http://www.sasknow.com #106-380 3120 8th St E Saskatoon, SK S7H 0W2 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message