From owner-freebsd-questions@FreeBSD.ORG Sat Sep 10 16:23:30 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9225716A41F for ; Sat, 10 Sep 2005 16:23:30 +0000 (GMT) (envelope-from cswiger@mac.com) Received: from vms046pub.verizon.net (vms046pub.verizon.net [206.46.252.46]) by mx1.FreeBSD.org (Postfix) with ESMTP id 489BD43D45 for ; Sat, 10 Sep 2005 16:23:30 +0000 (GMT) (envelope-from cswiger@mac.com) Received: from [192.168.1.3] ([68.161.79.217]) by vms046.mailsrvcs.net (Sun Java System Messaging Server 6.2 HotFix 0.04 (built Dec 24 2004)) with ESMTPA id <0IMM0009D071CHM0@vms046.mailsrvcs.net> for freebsd-questions@freebsd.org; Sat, 10 Sep 2005 11:23:26 -0500 (CDT) Date: Sat, 10 Sep 2005 12:23:29 -0400 From: Chuck Swiger In-reply-to: To: tdimson@gmail.com Message-id: <43230881.60901@mac.com> Organization: The Courts of Chaos MIME-version: 1.0 Content-type: text/plain; charset=us-ascii; format=flowed Content-transfer-encoding: 7bit X-Accept-Language: en-us, en References: <200509100748.18983.deltaski@earthlink.net> <20050910144433.GA793@sentinelchicken.net> User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.11) Gecko/20050801 Cc: freebsd-questions@freebsd.org Subject: Re: Strange (newbie) Gateway Errors X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 10 Sep 2005 16:23:30 -0000 Thomas Dimson wrote: > I don't have natd configured in the slightest. My assumption was that I > didn't need to run it because I have a router assigning the IP addresses and > doing NAT for my cable modem, while my university is assigning me an IP > address for the second interface. Maybe I do need to run it. Can someone > point me in the direction of an install guide, or quickly explain it - the > man page confused me half to death. > > Also: what was that information about having natd on both interfaces? I know > that's nonstandard, so how would you configure that? It's likely that setting up a route for the university subnet on the client machines, via routed, or on your routers which points to your university-bound interface would help. At one point, when I was going some experimentation with sendmail, I got a call from the senior admin at CMU, who asked for me by name and immediately asked me to pull my ethernet cable out of my computer because it was generating about 50 bounces a second to in a mailing loop. I mention this because if you enable natd in both directions, you are probably going to loop university traffic out your cable connection, and vice-versa for Internet traffic in via your university's network, bypassing their firewalls and security in the process. Before you get a call from some senior admin who is not going to be thrilled to solve an emergency on a Saturday, I suggest you stop for a second, figure out what you actually need or want to do, and be prepared to discuss it with your university admins beforehand and get their advice. -- -Chuck