From owner-freebsd-questions@FreeBSD.ORG Fri Nov 21 08:26:31 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 836DC1065670 for ; Fri, 21 Nov 2008 08:26:31 +0000 (UTC) (envelope-from fbsd1@a1poweruser.com) Received: from mail-03.name-services.com (mail-03.name-services.com [69.64.155.195]) by mx1.freebsd.org (Postfix) with ESMTP id 6FF538FC1C for ; Fri, 21 Nov 2008 08:26:31 +0000 (UTC) (envelope-from fbsd1@a1poweruser.com) Received: from [10.0.10.6] ([202.69.173.209]) by mail-03.name-services.com with Microsoft SMTPSVC(6.0.3790.3959); Fri, 21 Nov 2008 00:25:32 -0800 Message-ID: <492670D9.9090100@a1poweruser.com> Date: Fri, 21 Nov 2008 16:27:05 +0800 From: Fbsd1 User-Agent: Thunderbird 2.0.0.17 (Windows/20080914) MIME-Version: 1.0 To: Pongthep Kulkrisada References: <20081121060619.GA1057@gmail.com> In-Reply-To: <20081121060619.GA1057@gmail.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-OriginalArrivalTime: 21 Nov 2008 08:25:33.0053 (UTC) FILETIME=[B8A012D0:01C94BB2] X-Sender: fbsd1@a1poweruser.com Cc: freebsd-questions@freebsd.org Subject: Re: Problem about ppp -nat X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Nov 2008 08:26:31 -0000 Pongthep Kulkrisada wrote: > Hi All, > > I have just subscribed to freebsd-questions and I have a question about ppp -nat. > > I have 2 computers. One is running FreeBSD-7.0R, the other is running WinXP. The host running FBSD7.0R has been connecting to the outside world using user-ppp without any problem for very long. Now I want to share internet access to the other host behind NAT through this FBSD host. > My FBSD machine has 2 interfaces i.e. > tun0 (connecting to ISP) with dynamic IP (of course) > fxp0 (for internal LAN) with static IP of 192.168.1.10 > My WinXP machine has 1 interface (internal LAN) with static IP of 192.168.1.11 > > Previously I have a router acting as a gateway for all machines behind NAT. But now I want FBSD machine to work as a gateway. I have never done this before. I tried some googling with reading ppp(8) and ipfw(8). And I tried masquerading but it didn't work. I have plenty configuration files. But the relevant configurations are listed here. > > /etc/rc.conf > # enable IP forwarding > gateway_enable="YES" > # previously I ran web-server, just disable it or comment it out, not sure why! > #apache_enable="YES" > > On the host running WinXP, I set its gateway and DNS server to the IP of ppp host i.e. 192.168.1.10. > > I then inserted the following line as the first rule in /etc/ipfw.rules. > /sbin/ipfw add allow all from any to any via fxp0 > (I know this rule is dangerous, but just for testing.) > > I then issue the ppp command. > root@fbsd:~# ppp -background -nat myisp > > FBSD host (running ppp) can access anywhere but WinXP host can't. I learned from some site explaining that ppp itself has the capability of IP masquerading. And it does not require natd(8). So I don't mention about natd here. > Anyone have a clue or who have done the correct configurations, please point me out. > > Thank you in advance. > Pongthep > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > > You need to run dhcp so you can assign ip address on the LAN so the down stream xp box can gain access to the public internet through your gateway freebsd box. There is a detailed step by step instructions in the install guide at www.a1poweruser.com