From owner-freebsd-questions@FreeBSD.ORG Sat Oct 18 10:10:40 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BF28316A4B3 for ; Sat, 18 Oct 2003 10:10:40 -0700 (PDT) Received: from be-well.ilk.org (lowellg.ne.client2.attbi.com [66.30.200.37]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0BFC643F85 for ; Sat, 18 Oct 2003 10:10:36 -0700 (PDT) (envelope-from freebsd-questions-local@be-well.ilk.org) Received: by be-well.ilk.org (Postfix, from userid 1147) id 606233B06; Sat, 18 Oct 2003 13:10:35 -0400 (EDT) Sender: lowell@be-well.ilk.org To: "Justin P. Michel" References: <021601c39343$572f85d0$0e0ea8c0@ARAMIS> From: Lowell Gilbert Date: 18 Oct 2003 13:10:35 -0400 In-Reply-To: <021601c39343$572f85d0$0e0ea8c0@ARAMIS> Message-ID: <44ekxasc8k.fsf@be-well.ilk.org> Lines: 45 User-Agent: Gnus/5.09 (Gnus v5.9.0) Emacs/21.3 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii cc: freebsd-questions@freebsd.org Subject: Re: NAT Woes... X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: freebsd-questions@freebsd.org List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 18 Oct 2003 17:10:40 -0000 "Justin P. Michel" writes: > I am having a problem with NAT. > > I have my FreeBSD system, running 4.8, cvsup'd to p13. I have the following > in my kernel configuration: > > options IPDIVERT > options IPFIREWALL > options IPFIREWALL_VERBOSE > options IPFIREWALL_VERBOSE_LIMIT=10 > > I have two network adapters, both Realtek 8139s. The first is set to > 192.168.0.2, the second is set to 10.0.0.1. > > The 192.168.0.2 one plugs into my router, and the 10.0.0.1 one plugs into my > local hub (just like in the picture in the handbook). > > The system can ping and talk fine with the outside world. However, when I > plug a system into the hub, the FreeBSD systems assigns it an IP (I'm > running dhcpd on the FreeBSD system as well), and I can ping the FreeBSD > system on the 10.0.0.1 interface, but I can not ping the other interface, or > access the outside world. > > I have the following in my rc.conf as well: > > gateway_enable="YES" > firewall_enable="YES" > firewall_type="OPEN" > natd_enable="YES" > natd_interface="rl0" > natd_flags="" > ifconfig_rl0="inet 192.168.0.2 netmask 255.255.255.0" > ifconfig_rl1="inet 10.0.0.1 netmask 255.255.255.0" > defaultrouter="192.168.0.1" > > Am I missing something? I followed the instructions in the handbook, (and > have set up similar networks that worked fine) but can not seem to get this > one to go. If anyone can shed some light on this situation, please let me > know. Are the client systems sending out packets at all? You can use tcpdump(1) on the FreeBSD router to check. If not, maybe they're not getting configured with a default route or DNS server.