From owner-freebsd-questions Thu Dec 13 14:18:36 2001 Delivered-To: freebsd-questions@freebsd.org Received: from web20607.mail.yahoo.com (web20607.mail.yahoo.com [216.136.226.165]) by hub.freebsd.org (Postfix) with SMTP id D125237B41B for ; Thu, 13 Dec 2001 14:18:29 -0800 (PST) Message-ID: <20011213221829.41931.qmail@web20607.mail.yahoo.com> Received: from [136.165.81.139] by web20607.mail.yahoo.com via HTTP; Thu, 13 Dec 2001 14:18:29 PST Date: Thu, 13 Dec 2001 14:18:29 -0800 (PST) From: Donnie Jones Subject: Re: upgrade from 4.0 to 4.4 cablem firewall/router ssh problems To: Walter McGinnis Cc: freebsd-questions@freebsd.org In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG --- Walter McGinnis wrote: > It also depends on what you built into the kernel, > too. > > It sounds like you are using ipnat and ipfilters, > whereas I'm using > natd and ipfw. I think these are two different sets > of software that > do the same thing, but in different ways. > > Hmm. I'll have to do some more research. > > Oh yeah. I'm curious what you have in > /etc/ipnat.conf. > > Thanks for your help. > > Walter Here ya go. cat /etc/ipnat.conf map fxp0 192.168.0.0/16 -> 0.0.0.0/32 portmap tcp/udp 40000:65000 map fxp0 192.168.0.0/16 -> 0.0.0.0/32 Also, what options have you put in the kernel? You may want to try out the things that are in my rc.conf and back-up your's of course before you try mine. :) See ya. -Donnie > > At 12:06 PM -0800 12/13/01, Donnie Jones wrote: > >Better yet Walter, here is my rc.conf: > > > >defaultrouter="24.251.253.1" > >gateway_enable="YES" > >hostname="ci592716-c.valleyst1.ky.home.com" > >network_interfaces="fxp0 lo0 fxp1" > >ifconfig_fxp0="inet 24.251.253.28 netmask > >255.255.255.0" > >ifconfig_fxp1="inet 192.168.0.1 netmask > 255.255.255.0" > >ipnat_enable="YES" > >ipnat_rules="/etc/ipnat.conf" > >ipfilter_enable="YES" > >ipfilter_rules="/etc/ipf.rules" > >inetd_enable="YES" > >ipv6_enable="YES" > >kern_securelevel_enable="NO" > >nfs_reserved_port_only="YES" > >sshd_enable="YES" > > > > > >It seems that from many of the docs online there is > >differences in how some people enable natd and > >firewalling. Some through the natd_enable=yes, > others > >ipnat_enable=yes. Similar with firewalling is > >firewall_enable=yes, or ipfilter_enable=yes. > > > >I think that maybe FBSD 4.4 is using the commands > >listed from my rc.conf and I guess it is not > accepting > >the others anymore to enable the NAT. > > > >Hope this helps some more.... > > > > > >-Donnie > > > > > >__________________________________________________ > >Do You Yahoo!? > >Check out Yahoo! Shopping and Yahoo! Auctions for > all of > >your unique holiday gifts! Buy at > http://shopping.yahoo.com > >or bid at http://auctions.yahoo.com > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of > the message __________________________________________________ Do You Yahoo!? Check out Yahoo! Shopping and Yahoo! Auctions for all of your unique holiday gifts! Buy at http://shopping.yahoo.com or bid at http://auctions.yahoo.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message