From owner-freebsd-questions@FreeBSD.ORG Thu Jul 10 13:29:55 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 05B1537B410 for ; Thu, 10 Jul 2003 13:29:55 -0700 (PDT) Received: from ms-smtp-03.tampabay.rr.com (ms-smtp-03.tampabay.rr.com [65.32.1.41]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3C6B843F85 for ; Thu, 10 Jul 2003 13:29:54 -0700 (PDT) (envelope-from habeeb@cfl.rr.com) Received: from kernel (31.126.35.65.cfl.rr.com [65.35.126.31]) h6AKTr4W020313 for ; Thu, 10 Jul 2003 16:29:53 -0400 (EDT) Message-ID: <001801c34721$da2b0090$0a1010ac@kernel> From: "David" To: Date: Thu, 10 Jul 2003 16:28:41 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1158 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 Subject: Network not working correctly without promiscuous mode being set? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 10 Jul 2003 20:29:55 -0000 my setup is basically like this: I have a freebsd machine that is supposed to act as a gateway, it has 2 ethernet cards xl0 (local network) and xl1 (internet). xl1 is plugged directly into the cable modem and off it goes, and xl0 is plugged into a switch where all the other machines are plugged into locally. xl1 is 65.35.123.123 for example and internally xl0 is 172.16.16.1. If i attempt to ping 172.16.16.10 from .1 it does not work/go through. if I run tcpdump -i xl0, then try to ping again it will go through just fine and i see the packets going both ways now. Without tcpdump in promisc it wasn't working? Now when i try to get a DHCP lease on xl1 it sits there and sends requests with no replies, then when i run tcpdump -i xl1 it will get a lease and the internet will work fine. This is as best I can describe the issue and below is some included information. damn# ifconfig -a xl0: flags=8943 mtu 1500 options=3 inet 172.16.16.1 netmask 0xffffff00 broadcast 172.16.16.255 ether 00:01:03:c1:ac:19 media: Ethernet autoselect (100baseTX ) status: active xl1: flags=8943 mtu 1500 options=3 inet 65.35.126.31 netmask 0xfffff800 broadcast 255.255.255.255 ether 00:01:03:c1:4a:b9 media: Ethernet autoselect (10baseT/UTP) status: active lp0: flags=8810 mtu 1500 lo0: flags=8049 mtu 16384 inet 127.0.0.1 netmask 0xff000000 damn# grep nat /etc/rc.conf natd_program="/sbin/natd" # path to natd, if you want a different one. natd_enable="YES" # Enable natd (if firewall_enable == YES). natd_interface="xl1" # Public interface or IPaddress to use. natd_flags="" # Additional flags for natd. damn# grep ifconfig /etc/rc.conf ifconfig_xl1="DHCP" ifconfig_xl0="inet 172.16.16.1 netmask 255.255.255.0" damn# ipfw show 00100 34686 5360662 divert 8668 ip from any to any via xl1 65535 70033 10711879 allow ip from any to any damn# arp -a 1.120.35.65.cfl.rr.com (65.35.120.1) at 00:06:2a:ce:64:54 on xl1 [ethernet] ? (172.16.16.1) at 00:01:03:c1:ac:19 on xl0 permanent [ethernet] ? (172.16.16.10) at 00:01:03:c1:89:1a on xl0 [ethernet]