From owner-freebsd-isp Fri Nov 9 8:19:17 2001 Delivered-To: freebsd-isp@freebsd.org Received: from smtp1.amigo.net (smtp1.amigo.net [209.94.64.30]) by hub.freebsd.org (Postfix) with ESMTP id 5D3C937B429 for ; Fri, 9 Nov 2001 08:19:13 -0800 (PST) Received: from there (billing.amigo.net [209.94.67.250]) by smtp1.amigo.net (8.11.4/8.11.4) with SMTP id fA9GMr114063 for ; Fri, 9 Nov 2001 09:22:53 -0700 (MST) (envelope-from randys@amigo.net) Message-Id: <200111091622.fA9GMr114063@smtp1.amigo.net> Content-Type: text/plain; charset="iso-8859-1" From: Randy Smith Organization: Amigo.Net To: freebsd-isp@freebsd.org Subject: Router questions Date: Fri, 9 Nov 2001 09:20:12 -0700 X-Mailer: KMail [version 1.3.1] MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi all, I have a couple of FreeBSD router questions. 1) Is there a utility that configures routed and ipfw using Cisco's command set? I couldn't find one in the ports collection so I thought I'd ask here. 2) I have a FreeBSD 4.4-R machine that want to configure as a router to do traffic shaping and transparent proxy. I think I have the router setup as per the documentation but I cannot ping across the box. Here's my setup: {net} <---> [gw1] <---> [fbsd] <---> [gw2] <---> {Lan} * gw1 has address 192.168.69.49/255.255.255.252 * fbsd has addresses fxp0=192.168.69.50/255.255.255.252 and fxp1=192.168.69.53/255.255.255.252 * gw2 has address 192.168.69.54/255.255.255.252 (The gw* devices have other addresses on other interfaces that are on other networks that do not enter into this discussion.) fbsd can ping gw1 and out to the net and gw2 and into the lan. The problem is that gw2 can't ping gw1 and vis versa but the can each ping the fbsd interface on their network. i.e. gw2 can ping fbsd:fxp1 and gw1 can ping fbsd:fxp0. In /etc/rc.conf I have: gateway_enable="YES" router_enable="YES" firewall_enable="YES" firewall_type="OPEN" # For testing defaultrouter="192.168.69.49" ifconfig_fxp0="inet 192.168.1.50 netmask 255.255.255.252" ifconfig_fxp1="inet 192.168.1.53 netmask 255.255.255.252" gateway_enable sets the sysctl variable net.inet.ip.forwarding which should turn on ip forwarding between interfaces. For simplicity, I have no static routes defined. (As an aside is there any better documentation on static routes than what's in route(8)?) What did I miss that is preventing me from getting across the fbsd router? Thanks in advance. -- Randy Smith Amigo.Net Systems Administrator 1-719-589-6100 x 4185 http://www.amigo.net/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message