From owner-freebsd-questions@FreeBSD.ORG Mon Jan 2 16:01:54 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5D18E16A41F for ; Mon, 2 Jan 2006 16:01:54 +0000 (GMT) (envelope-from fbsd_user@a1poweruser.com) Received: from mta11.adelphia.net (mta11.adelphia.net [68.168.78.205]) by mx1.FreeBSD.org (Postfix) with ESMTP id E616643D46 for ; Mon, 2 Jan 2006 16:01:53 +0000 (GMT) (envelope-from fbsd_user@a1poweruser.com) Received: from barbish ([69.172.31.117]) by mta11.adelphia.net (InterMail vM.6.01.05.02 201-2131-123-102-20050715) with SMTP id <20060102160152.HTSE5278.mta11.adelphia.net@barbish>; Mon, 2 Jan 2006 11:01:52 -0500 From: "fbsd_user" To: "caleb" , Date: Mon, 2 Jan 2006 11:01:50 -0500 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) In-Reply-To: <20051231130326.D699@nebuchadnezzar.my.domain> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1409 Importance: Normal Cc: Subject: RE: ipnat -CF -f /etc/ipnat.rules X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: fbsd_user@a1poweruser.com List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 02 Jan 2006 16:01:54 -0000 I see "tun" in your ipnat rule. That means you are using ppp for phone dialup connection. Every time you lose your phone connection you get different IP from your ISP. Use NAT function of PPP and not ipnat and your problem will go away. -----Original Message----- From: owner-freebsd-questions@freebsd.org [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of caleb Sent: Friday, December 30, 2005 9:16 PM To: freebsd-questions@freebsd.org Subject: ipnat -CF -f /etc/ipnat.rules Hi everyone, I have just put together a router/firewall using 5.4 RELEASE and IPFILTER. Everything is working fine except I have to manually flush the NAT table every time the router boots. below is my rc.conf and ipnat.rules, I have used rc.conf to start everything at boot; /* rc.conf */ gateway_enable="YES" sshd_enable="YES" ifconfig_rl1="inet 10.0.0.1 netmask 255.255.255.0" ifconfig_rl0="inet 192.168.0.1 netmask 255.255.255.0" hostname="tweak" ipfilter_enable="YES" ipfilter_rules="/etc/ipf.rules" ipmon_enable="YES" ipmon_flags="-Ds" ipnat_enable="YES" ipnat_rules="/etc/ipnat.rules" ppp_enable="YES" ppp_mode="ddial" ppp_nat="NO" ppp_profile="netspace" ppp_user="root" /* ipnat.rules */ map tun0 192.168.0.0/24 -> 0/32 Is there something I am missing? I do not think it is ipf, as I have configured it to allow everything in and out. Could you please CC me if you decide to help. Thankyou, caleb -- There is no spoon _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"