From owner-freebsd-questions@FreeBSD.ORG Thu Jul 10 13:55:33 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1715D37B401 for ; Thu, 10 Jul 2003 13:55:33 -0700 (PDT) Received: from mail1.panix.com (mail1.panix.com [166.84.1.72]) by mx1.FreeBSD.org (Postfix) with ESMTP id 271E543F3F for ; Thu, 10 Jul 2003 13:55:30 -0700 (PDT) (envelope-from stanb@panix.com) Received: from panix.com (brillig.panix.com [166.84.1.76]) by mail1.panix.com (Postfix) with ESMTP id 7456748796; Thu, 10 Jul 2003 16:55:29 -0400 (EDT) Received: from teddy.fas.com (pcp01010374pcs.mplsnt01.sc.comcast.net [68.58.176.69]) by panix.com (Postfix) with ESMTP id D6C712AA3A; Thu, 10 Jul 2003 16:54:58 -0400 (EDT) Received: from stan by teddy.fas.com with local (Exim 3.36 #1 (Debian)) id 19aiRO-0007FC-00; Thu, 10 Jul 2003 16:54:58 -0400 Date: Thu, 10 Jul 2003 16:54:58 -0400 From: stan To: David Message-ID: <20030710205458.GC27617@teddy.fas.com> Mail-Followup-To: David , Free BSD Questions list References: <001801c34721$da2b0090$0a1010ac@kernel> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <001801c34721$da2b0090$0a1010ac@kernel> X-Editor: gVim X-Operating-System: Debian GNU/Linux X-Kernel-Version: 2.4.21 X-Uptime: 16:49:11 up 24 days, 3:51, 2 users, load average: 0.02, 0.02, 0.00 User-Agent: Mutt/1.5.4i Sender: Stan Brown cc: Free BSD Questions list Subject: Re: Network not working correctly without promiscuous mode being set? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 10 Jul 2003 20:55:33 -0000 Sounds like a routing problem. What does netstat -rn show? On Thu, Jul 10, 2003 at 04:28:41PM -0400, David wrote: > my setup is basically like this: I have a freebsd machine that is supposed > to act as a gateway, it has 2 ethernet cards xl0 (local network) and xl1 > (internet). xl1 is plugged directly into the cable modem and off it goes, > and xl0 is plugged into a switch where all the other machines are plugged > into locally. xl1 is 65.35.123.123 for example and internally xl0 is > 172.16.16.1. > > If i attempt to ping 172.16.16.10 from .1 it does not work/go through. if I > run tcpdump -i xl0, then try to ping again it will go through just fine and > i see the packets going both ways now. Without tcpdump in promisc it wasn't > working? Now when i try to get a DHCP lease on xl1 it sits there and sends > requests with no replies, then when i run tcpdump -i xl1 it will get a lease > and the internet will work fine. This is as best I can describe the issue > and below is some included information. > > damn# ifconfig -a > xl0: flags=8943 mtu 1500 > options=3 > inet 172.16.16.1 netmask 0xffffff00 broadcast 172.16.16.255 > ether 00:01:03:c1:ac:19 > media: Ethernet autoselect (100baseTX ) > status: active > xl1: flags=8943 mtu 1500 > options=3 > inet 65.35.126.31 netmask 0xfffff800 broadcast 255.255.255.255 > ether 00:01:03:c1:4a:b9 > media: Ethernet autoselect (10baseT/UTP) > status: active > lp0: flags=8810 mtu 1500 > lo0: flags=8049 mtu 16384 > inet 127.0.0.1 netmask 0xff000000 > > damn# grep nat /etc/rc.conf > natd_program="/sbin/natd" # path to natd, if you want a different one. > natd_enable="YES" # Enable natd (if firewall_enable == YES). > natd_interface="xl1" # Public interface or IPaddress to use. > natd_flags="" # Additional flags for natd. > > damn# grep ifconfig /etc/rc.conf > ifconfig_xl1="DHCP" > ifconfig_xl0="inet 172.16.16.1 netmask 255.255.255.0" > > damn# ipfw show > 00100 34686 5360662 divert 8668 ip from any to any via xl1 > 65535 70033 10711879 allow ip from any to any > > damn# arp -a > 1.120.35.65.cfl.rr.com (65.35.120.1) at 00:06:2a:ce:64:54 on xl1 [ethernet] > ? (172.16.16.1) at 00:01:03:c1:ac:19 on xl0 permanent [ethernet] > ? (172.16.16.10) at 00:01:03:c1:89:1a on xl0 [ethernet] > > > > > > > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > -- "They that would give up essential liberty for temporary safety deserve neither liberty nor safety." -- Benjamin Franklin