From owner-freebsd-questions Sun Mar 28 21: 5:33 1999 Delivered-To: freebsd-questions@freebsd.org Received: from berkeleycs.ml.org (unknown [206.110.18.251]) by hub.freebsd.org (Postfix) with ESMTP id 39D6614CD3 for ; Sun, 28 Mar 1999 21:05:32 -0800 (PST) (envelope-from bearmaps@berkeleycs.ml.org) Received: (from bearmaps@localhost) by berkeleycs.ml.org (8.9.2/8.9.1) id UAA18965; Sun, 28 Mar 1999 20:58:04 -0800 (PST) Date: Sun, 28 Mar 1999 20:58:03 -0800 From: Spam Me Here To: gummibear@we.mediaone.net, freebsd-questions@freebsd.org Subject: Re: IP Forwarding and NAT Help Needed Message-ID: <19990328205803.B804@bear.berkeleycs.ml.org> References: <3.0.6.32.19990328203135.0079d730@we.mediaone.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95.4us In-Reply-To: <3.0.6.32.19990328203135.0079d730@we.mediaone.net>; from gummibear@we.mediaone.net on Sun, Mar 28, 1999 at 08:31:35PM -0800 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG You need to set FreeBSD so that it allows your clients to access the Internet. this is accomplished by enabling a firewall, basically the settings you need are: firewall_enable="YES" # Set to YES to enable firewall functionality firewall_type="OPEN" # Firewall type (see /etc/rc.firewall) firewall_quiet="NO" # Set to YES to suppress rule display natd_enable="YES" natd_interface="tun0" natd_flags="" gateway_enable="YES" # Set to YES if this host will be a gateway. defaultrouter="128.32.136.9" # Set to default gateway (or NO). Thats about it. On Sun, Mar 28, 1999 at 08:31:35PM -0800, gummibear@we.mediaone.net wrote: > > Hey all. > > Here's the story. > > With the addition of one more computer I now have ine Windows box, one > FreeBSD box, one cable modem, and two people fighting over internet use. > > Well, the FreeBSD box now has 2 network cards: ed0 and ed1. > > My ISP would probably like me to use a DHCP client, but with FreeBSD I've > had just statically set the IP address and Gateway information. That > method had worked great, although I guess I can try using a DHCP client. > > Here's a diagram of how I tried to set it up. > > > Win95 FreeBSD Internet > |---------------------|-------------------> > 10.0.0.2 10.0.0.1 ed0 > 24.130.60.137 ed1 > 255.255.252.0 netmask > 24.130.60.1 gateway (ISP side) > > I read the NAT man page and followed the instructions at the bottom. I > rebuilt a kernel with IPFIREWALL and IPDIVERT and pretty much did > everything else mentioned in the man page. But nothing worked. When > trying to ping out, I got "permissioned denied". I could ping the win95 > machine and the win95 machine could ping the FBSD machine but that was it. > No internet. I'm not sure what I could be missing. > > I'm not sure what else to say. I've been working on this pretty much all > day and I'm sort of burnt out. I'm not sure if I have to do some thing > with routing. How does FreeBSD know to send packets coming from one > network card and out the other? Howcome I get permissioned denied when I > try to ping out on the internet? Why the hell do I need a firewall? I > never had one before. > > Well, sort of getting tired. Need food, need beer, need rest. Then I'll > try and attack this again. > > > Any help, or info would work. Just to let you know. I've read the manpage > for NAT, read "Complete FreeBSD", and FreeBSD Diary and still haven't > worked things out. > > TIA, > > Joey "Dazed and Confused" Garcia > > > ================================================================ > Joey Bear Garcia > Downey, CA > bear@pacificnet.net > ================================================================ > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message