From owner-freebsd-questions Mon Apr 16 6:23:18 2001 Delivered-To: freebsd-questions@freebsd.org Received: from mail.iinet.net.au (symphony-01.iinet.net.au [203.59.24.16]) by hub.freebsd.org (Postfix) with SMTP id 543C637B424 for ; Mon, 16 Apr 2001 06:23:12 -0700 (PDT) (envelope-from katinka@magestower.com) Received: (qmail 17904 invoked by uid 666); 16 Apr 2001 13:23:01 -0000 Received: from unknown (HELO WSKATINKA) (203.59.188.60) by mail.iinet.net.au with SMTP; 16 Apr 2001 13:23:01 -0000 Message-ID: <004501c0c677$f5d29380$fe00a8c0@kat.lan> From: "Kathy Quinlan" To: "Ryan VanMiddlesworth" , "Mark Woodson" Cc: References: <5.0.2.1.0.20010413110616.02356ec0@192.168.100.3> <000001c0c675$cd1eb970$0401010a@RYANVM5300> Subject: Re: IPNAT not working with SOME websites Date: Mon, 16 Apr 2001 21:20:07 +0800 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2314.1300 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Ryan, does the page come up as a DNS or server error ??? if so try hitting the refresh button, does the page then load ok ??? if so and someone else has fixed this I am looking at this problem and need pointers too. doesn't not happen that often, and seems to be a dummy error message under IE/ NS for a timeout error (I notice it more during heavy traffic on a 56Kbps dialup line :of( Regards, Kat. ----- Original Message ----- From: Ryan VanMiddlesworth To: Mark Woodson Cc: Sent: Saturday, April 14, 2001 11:21 AM Subject: Re: IPNAT not working with SOME websites > > ----- Original Message ----- > From: "Mark Woodson" > To: "Ryan VanMiddlesworth" > Cc: > Sent: Friday, April 13, 2001 10:10 AM > Subject: Re: IPNAT not working with SOME websites > > > > At 10:59 AM 4/11/2001 -0500, Ryan VanMiddlesworth wrote: > > >I have a dedicated Internet connection to a particular box running > FreeBSD > > >4.2-STABLE that serves as a gateway. The box has two NICs - one to the > > >Internet (208.196.36.248) and the other to my internal network > > >(10.1.0.0/16). I have setup ipfilter and am using ipnat to masquerade > the > > >10.1.0.0 addresses as the 208.196.36.248. > > > > [snipped] > > > > >Here are my ipnat rules: > > > map ed0 10.1.0.0/16 -> 208.196.36.248/32 proxy port ftp ftp/tcp > > > map ed0 10.1.0.0/16 -> 208.196.36.248/32 portmap tcp/udp 10000:40000 > > > map ed0 10.1.0.0/16 -> 208.196.36.248/32 > > > > > >So, what am I doing wrong? I've setup masquerading on Linux a million > times > > >(using ipchains) and I've never had any problems like this. I'm am > fairly > > >certain it must be something I'm doing, just because it's such an easily > > >reproducible problem that I can't believe no one has ever seen (and > fixed) > > >it. > > > > Are you sure it's not your filter rules? That sounds much more like > you've > > got something confused with your filter. Have you tried commenting out > > everything and just putting "pass in all" and "pass out all" to see if > that > > fixes it? If it does then just add the rules back in one at a time until > > you find out which one it is that's breaking it. Your NAT rules don't > look > > like there's an error in them to me. > > No, I've set ipf's rules to pass everthing and that doesn't help at all. > I've really trimmed the configuration down to the bare minimum to simplify > things and it still doesn't work properly. > > Ryan > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message