From owner-freebsd-questions@FreeBSD.ORG Thu Jun 23 18:24:09 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7B2D616A41C for ; Thu, 23 Jun 2005 18:24:09 +0000 (GMT) (envelope-from josepha48@yahoo.com) Received: from web41005.mail.yahoo.com (web41005.mail.yahoo.com [66.218.93.4]) by mx1.FreeBSD.org (Postfix) with SMTP id 5D89F43D53 for ; Thu, 23 Jun 2005 18:24:09 +0000 (GMT) (envelope-from josepha48@yahoo.com) Received: (qmail 978 invoked by uid 60001); 23 Jun 2005 18:24:07 -0000 DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:Received:Date:From:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=OaP5xU9FwPnKXGTmRdErF9abuUWLGj4w7RP6Ukop9rcfpJeqmLvobY1bmvi/D6YoWsZGZDvlLeKY2BqJN4GclgJBqS691MqLgu69WCAFOq2hBfJVrrmP8zFAPonWbLKSoOXh8fPbWbdkshzOP76+8W5bxZNnb4OA8sqUi5skkPk= ; Message-ID: <20050623182407.976.qmail@web41005.mail.yahoo.com> Received: from [4.20.162.6] by web41005.mail.yahoo.com via HTTP; Thu, 23 Jun 2005 11:24:07 PDT Date: Thu, 23 Jun 2005 11:24:07 -0700 (PDT) From: Joe To: Alex Zbyslaw In-Reply-To: <42B3FCC3.6030202@dial.pipex.com> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Cc: freebsd-questions@freebsd.org Subject: Re: SMP and networking under FreeBSD 5.3 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 23 Jun 2005 18:24:09 -0000 Okay, I've been looking and looking for duplicate natd's. I have the /etc/rc.conf which has natd stuff below, and the only other place I see it is in ipfw. I was able to change my rc and use /etc/rc.d/natd start and that works. Which is better as it does not require me to reload my firewall rules. I still don't know why natd refuses to start the first time when called from ipfw. I have no rc.conf.local Joe --- Alex Zbyslaw wrote: > Joe wrote: > > >Okay, back on topic. > > > >I've changed my rules in ipfw, and no longer get the hostname > .. > >messages. > > > >Now natd does not start and it complains 'unable to bind > divert > >socket, and then cant assign requested address'. I'm using: > > > >natd_enable="YES" > >natd_interface="dc0" > >natd_flags="-dynamic -d -log_ipfw_denied -log_denied" > > > > > > These are my parameters below which definitely work -- or you > wouldn't > be seeing this email :) I can't see anything obviously wrong > with > yours; what I would suggest is to start with just "-dynamic" > since > that's the only one that's *required* for this setup to work > and see how > that does. I can't find your original rules: I assume that a) > dc0 *is* > your external interface (typos are a common source of errors, > though I > don't think that's the case here) b) you have an > ifconfig_dc0="DHCP" > line in /etc/rc.conf. > > natd_enable="YES" # Natd packet > translation > natd_flags="-log -log_denied -dynamic" > natd_interface="sis0" > ifconfig_sis0="DHCP" # External > network > > At startup I get a message like: > > Jun 18 10:38:58 natd[701]: Aliasing to 0.0.0.0, mtu 1500 bytes > > just after the firewall rules start up. > > The divert rule in my firewall says: > > ipfw add divert natd all from any to any via ${natd_interface} > > If you have static rules rather than a script then you need > ${natd_interface} to be replaced directly with dc0. > > The other things to check, I guess, are that those are the > *only* natd > lines you have: > > egrep natd /etc/rc.conf /etc.rc.conf.local > > --Alex > > __________________________________ Discover Yahoo! Find restaurants, movies, travel and more fun for the weekend. Check it out! http://discover.yahoo.com/weekend.html