From owner-freebsd-stable@FreeBSD.ORG  Fri Oct 29 07:52:46 2004
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
Delivered-To: freebsd-stable@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id A343916A4CE
	for <freebsd-stable@freebsd.org>;
	Fri, 29 Oct 2004 07:52:46 +0000 (GMT)
Received: from dsl-mail.kamp.net (mail.kamp-dsl.de [195.62.99.42])
	by mx1.FreeBSD.org (Postfix) with SMTP id B9E2543D49
	for <freebsd-stable@freebsd.org>;
	Fri, 29 Oct 2004 07:52:45 +0000 (GMT)
	(envelope-from root@pukruppa.de)
Received: (qmail 20129 invoked by uid 513); 29 Oct 2004 07:52:47 -0000
Received: from root@pukruppa.de by dsl-mail by uid 89 with qmail-scanner-1.21 
	Clear:RC:1(213.146.114.24):SA:0(-4.9/5.0):. 
	Processed in 0.57675 secs); 29 Oct 2004 07:52:47 -0000
X-Spam-Status: No, hits=-4.9 required=5.0
Received: from unknown (HELO reverse-213-146-114-24.dialin.kamp-dsl.de)
	(213.146.114.24)
	by dsl-mail.kamp.net with SMTP; 29 Oct 2004 07:52:46 -0000
Date: Fri, 29 Oct 2004 09:52:51 +0200 (CEST)
From: Peter Ulrich Kruppa <root@pukruppa.de>
X-X-Sender: root@pukruppa.net
To: freebsd-stable@freebsd.org
In-Reply-To: <20041026141721.X816@pukruppa.net>
Message-ID: <20041029090017.I827@pukruppa.net>
References: <20041026141721.X816@pukruppa.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
Subject: Re: ppp -nat broken [solved]
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Production branch of FreeBSD source code
	<freebsd-stable.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 29 Oct 2004 07:52:46 -0000

On Tue, 26 Oct 2004, Peter Ulrich Kruppa wrote:

> I wonder if userland ppp's nat option is broken or if I missed 
> something new.
First of all: My humble apologies to everybody for setting you on 
the wrong track. Indeed -nat works all-right. My problems were 
caused by recent changes of named and BIND.
Big thanks for all hints which helped me to analyze this. For 
details look further down.

> I am using my freebsd (5.3-STABLE) machine as internet gateway. 
> Everything works all-right from the gateway itself. From my 
> workstations I can ping any IP in the internet, but domain 
> names won't be resolved ("unknown host").
>
> These are my rc.conf lines:
>
> kern_securelevel_enable="NO"
> inetd_enable="YES"
> gateway_enable="YES"
> named_enable="YES"
> ppp_enable="YES"
> ppp_mode="ddial"
> ppp_nat="YES"
> ppp_profile="my-profile"
This configuration starts named as a local nameserver. I never 
had to do anything else. This stopped working "out of the box" 
some time ago. From /usr/src/UPDATING (20040928, 20040925) I 
learn that named and BIND have changed. I did the respective 
changes and edited two entries in /var/named/etc/named/named.conf
1) I commented
 	listen-on	{127.0.0.1;};
2) I put my two nameserver IPs (from /etc/resolv.conf) into
 	forwarders {
 		195.62.99.42;
 		195.62.97.177;
 	};

After restarting named everything worked as before: my clients 
accept my gateway's IP as gateway *and* nameserver.


Thanks and regards,

Uli.



 	+---------------------------+
 	|    Peter Ulrich Kruppa    |
         |         Wuppertal         |
         |          Germany          |
         +---------------------------+