From owner-freebsd-questions Fri Sep 15 11:52: 0 2000 Delivered-To: freebsd-questions@freebsd.org Received: from post.its.mcw.edu (post-v30.its.mcw.edu [141.106.30.10]) by hub.freebsd.org (Postfix) with ESMTP id 14EAB37B422 for ; Fri, 15 Sep 2000 11:51:55 -0700 (PDT) Received: from localhost by post.its.mcw.edu (8.9.3/8.9.3) with SMTP id NAA19564; Fri, 15 Sep 2000 13:48:32 -0500 (CDT) Date: Fri, 15 Sep 2000 13:48:32 -0500 (CDT) From: Fengping Li To: Brad Waite Cc: questions@FreeBSD.ORG Subject: Re: problems setting up a gateway In-Reply-To: <39BE36D0.3D2EA515@ssbaptist.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I would suggest you use ipfilter/ipnat instead of ipfw, or just use Socks5. On Tue, 12 Sep 2000, Brad Waite wrote: > Date: Tue, 12 Sep 2000 07:59:44 -0600 > From: Brad Waite > To: questions@FreeBSD.ORG > Subject: Re: problems setting up a gateway > > Here's my config. Everything looks like it should work...to me. > > # ifconfig -a > xl0: flags=8843 mtu 1500 > inet 192.168.1.130 netmask 0xffffff00 broadcast 192.168.1.255 > inet6 fe80::250:daff:fe8b:306c%xl0 prefixlen 64 scopeid 0x1 > ether 00:50:da:8b:30:6c > media: autoselect (100baseTX ) status: active > supported media: autoselect 100baseTX 100baseTX > 10baseT/UTP 10baseT/UTP 100baseTX > xl1: flags=8843 mtu 1500 > inet6 fe80::250:daff:fe8b:306b%xl1 prefixlen 64 scopeid 0x2 > inet 216.18.141.65 netmask 0xffffffe0 broadcast 216.18.141.95 > inet 216.18.141.66 netmask 0xffffffe0 broadcast 216.18.141.95 > inet 216.18.141.67 netmask 0xffffffe0 broadcast 216.18.141.95 > inet 216.18.141.68 netmask 0xffffffe0 broadcast 216.18.141.95 > inet 216.18.141.71 netmask 0xffffffe0 broadcast 216.18.141.95 > inet 216.18.141.76 netmask 0xffffffe0 broadcast 216.18.141.95 > inet 216.18.141.77 netmask 0xffffffe0 broadcast 216.18.141.95 > ether 00:50:da:8b:30:6b > media: autoselect (10baseT/UTP) status: active > supported media: autoselect 100baseTX 100baseTX > 10baseT/UTP 10baseT/UTP 100baseTX > # netstat -rn > Routing tables > > Internet: > Destination Gateway Flags Netif Expire > default 216.18.141.94 UGSc xl1 > 127.0.0.1 127.0.0.1 UH lo0 > 192.168.1.0 ff:ff:ff:ff:ff:ff UHLWb xl0 => > 192.168.1 link#1 UC xl0 => > 192.168.1.3 0:aa:0:a3:2a:46 UHLW xl0 1011 > 192.168.1.7 0:aa:0:a5:f2:99 UHLW xl0 987 > 192.168.1.27 0:0:c0:c8:6e:9b UHLW xl0 1065 > 192.168.1.33 0:aa:0:a5:82:81 UHLW xl0 1092 > 192.168.1.100 0:0:1c:30:8a:e UHLW xl0 1199 > 192.168.1.130 0:50:da:8b:30:6c UHLW lo0 > 192.168.1.132 0:a0:c9:8:a8:57 UHLW xl0 753 > 192.168.1.150 0:a:27:8d:7:5c UHLW xl0 233 > 192.168.1.151 0:0:c5:4f:17:2c UHLW xl0 449 > 192.168.1.154 0:40:8c:3a:ad:55 UHLW xl0 126 > 192.168.1.182 link#1 UHLW xl0 => > 192.168.1.192 0:0:c0:93:4a:9e UHLW xl0 54 > 192.168.1.200 0:40:33:90:5d:10 UHLW xl0 => > 192.168.1.202 0:40:33:52:e7:d1 UHLW xl0 730 > 192.168.1.205 0:40:33:52:4a:9b UHLW xl0 984 > 192.168.1.210 0:aa:0:bb:20:ac UHLW xl0 815 > 192.168.1.217 0:aa:0:33:28:3 UHLW xl0 731 > 192.168.1.226 0:4f:49:6:aa:5c UHLW xl0 1199 > 192.168.1.233 0:4f:49:6:b2:91 UHLW xl0 944 > 192.168.1.234 0:40:af:54:c7:70 UHLW xl0 126 > 192.168.1.250 0:4f:49:6:af:28 UHLW xl0 503 > 192.168.1.255 ff:ff:ff:ff:ff:ff UHLWb xl0 > 216.18.141.64/27 link#2 UC xl1 => > 216.18.141.65 216.18.141.65 UHLW lo0 > 216.18.141.70 link#2 UHLW xl1 => > 216.18.141.79 0:0:e8:d8:3e:c UHLW xl1 835 > 216.18.141.94 0:10:67:0:86:3c UHLW xl1 1047 > > AppleTalk: > Destination Gateway Flags Netif Expire > > IPX: > Destination Gateway Flags Netif Expire > > Internet6: > Destination Gateway > Flags Netif Expire > ::1 ::1 > UH lo0 > fe80::%xl0/64 link#1 > UC xl0 > fe80::%xl1/64 link#2 > UC xl1 > fe80::%lo0/64 fe80::1%lo0 > Uc lo0 > fe80::%gif0/64 fe80::250:daff:fe8b:306c%gif0 > Uc gif0 > fe80::250:daff:fe8b:306c%gif0 ::1 > UH lo0 > fe80::%gif1/64 fe80::250:daff:fe8b:306c%gif1 > Uc gif1 > fe80::250:daff:fe8b:306c%gif1 ::1 > UH lo0 > fe80::%gif2/64 fe80::250:daff:fe8b:306c%gif2 > Uc gif2 > fe80::250:daff:fe8b:306c%gif2 ::1 > UH lo0 > fe80::%gif3/64 fe80::250:daff:fe8b:306c%gif3 > Uc gif3 > fe80::250:daff:fe8b:306c%gif3 ::1 > UH lo0 > fe80::%stf0/64 fe80::250:daff:fe8b:306c%stf0 > Uc stf0 > fe80::250:daff:fe8b:306c%stf0 ::1 > UH lo0 > ff01::/32 ::1 > U lo0 > ff02::%xl0/32 link#1 > UC xl0 > ff02::%xl1/32 link#2 > UC xl1 > ff02::%lo0/32 fe80::1%lo0 > UC lo0 > ff02::%gif0/32 fe80::250:daff:fe8b:306c%gif0 > UC gif0 > ff02::%gif1/32 fe80::250:daff:fe8b:306c%gif1 > UC gif1 > ff02::%gif2/32 fe80::250:daff:fe8b:306c%gif2 > UC gif2 > ff02::%gif3/32 fe80::250:daff:fe8b:306c%gif3 > UC gif3 > ff02::%stf0/32 fe80::250:daff:fe8b:306c%stf0 > UC stf0 > > > "Crist J . Clark" wrote: > > > > On Mon, Sep 11, 2000 at 03:10:14PM -0600, brad waite wrote: > > > Hi guys, > > > > > > I've set net.inet.ip.forwarding->1 on my 4.0-R box, but it's not > > > running like a gateway between my nics. It was my impression that this > > > is all that's required to make an instant router. There's no messages > > > in syslog that indicate any problems. Do I need to build a new kernel > > > w/ipfw support? Other uggestions? > > > > No need for ipfw(8). Are the interfaces configured correctly and the > > routing table set? What do, > > > > # ifconfig > > # netstat -rn > > > > Return? Also, what are the symptoms of your troubles? What have you > > done to check if forwarding works and how does it fail? > > -- > > Crist J. Clark cjclark@alum.mit.edu > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-questions" in the body of the message > > -- > Brad Waite brad@ssbaptist.net > Media Director - South Sheridan Baptist Church > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message