From owner-freebsd-questions Fri May 12 10:33:39 2000 Delivered-To: freebsd-questions@freebsd.org Received: from smtp.mail.yahoo.com (smtp.mail.yahoo.com [128.11.68.32]) by hub.freebsd.org (Postfix) with SMTP id D072C37BE7A for ; Fri, 12 May 2000 10:33:26 -0700 (PDT) (envelope-from jwarner182@yahoo.com) Received: from unknown (HELO 16jeremy) (206.163.169.21) by smtp.mail.yahoo.com with SMTP; 12 May 2000 10:33:22 -0700 X-Apparently-From: Message-ID: <004001bfbc38$04222400$1001a8c0@northwesttechnical.com> From: "Jeremy Warner" To: "Rudy Rucker" Cc: References: Subject: Re: IPFW and NATD question Date: Fri, 12 May 2000 10:32:15 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2314.1300 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG this is what I get: #ipfw show 00100 105 6310 divert 8668 ip from any to any via fxp0 00100 0 0 allow ip from any to any via lo0 00200 0 0 deny ip from any to 127.0.0.0/8 65000 174 10308 allow ip from any to any 65535 0 0 deny ip from any to any With these settings the gateway can ping the 192.168.1.x network but it can not ping anything on 206.163.165.x (aside form 206.163.165.1) If I do a ipfw delete 100 then the gateway can ping anything in both directions. and yes my 192.168.1.x clients are configured correctly. from my 192.168.1.x network I can ping 192.168.1.1 and 206.163.165.1 but know further. i've made no changes in my rc.firewall file. are there setting that need to be setup in here? it is just set to the default config right now. ----- Original Message ----- From: Rudy Rucker To: Jeremy Warner Cc: Sent: Friday, May 12, 2000 3:09 AM Subject: Re: IPFW and NATD question > > Do a 'ipfw show' as root. > That will make sure that your firewall is running and the correct rules > are loaded (look for the divert rule). > > Did you set up clients on the 192.168.1.x network to use > 192.168.1.1 as their gateway (and as their DNS)? > > Rudy > > On Fri, 12 May 2000, Jeremy Warner wrote: > > > I trying to setup NATD and IPFW and im not getting very far. > > I'm using FreeBSD-4.0. > > My gateway server is connected to the internet (fxp0) and it is also connected to my network (fxp1) > > I am trying to get natd to divert my internal network 192.168.1.0 through my gateway so that my internal network can see the internet, but for some reason its not working. > > > > I compiled my Kernal with: > > options IPFIREWALL > > options IPFIREWALL_VERBOSE > > options IPDIVERT > > > > This is what my rc.conf file looks like: > > > > ifconfig_fxp0="inet 206.163.165.1 netmask 255.255.255.224" > > ifconfig_fxp1="inet 192.168.1.1 netmask 255.255.255.0" > > gateway_enable="YES" > > defaultrouter="206.163.165.30" > > named_enable="YES" > > network_interfaces="lo0 fxp0 fxp1" > > hostname="gw.northwesttechnical.com" > > natd_enable=YES > > natd_interface="fxp0" > > natd_flags="-f /etc/natd.conf" > > firewall_enable=YES > > firewall_type=open > > firewall_quiet=YES > > > > This is my natd.conf file: > > > > interface fxp0 > > deny_incoming yes > > use_sockets yes > > same_ports yes > > > > > > If anyone has any ideas here let me know. > > > > Thanks... > > > > __________________________________________________ Do You Yahoo!? Talk to your friends online with Yahoo! Messenger. http://im.yahoo.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message