From owner-freebsd-net@FreeBSD.ORG Fri Dec 14 10:12:30 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id BE6EA16A41A for ; Fri, 14 Dec 2007 10:12:30 +0000 (UTC) (envelope-from rea-fbsd@codelabs.ru) Received: from pobox.codelabs.ru (pobox.codelabs.ru [144.206.177.45]) by mx1.freebsd.org (Postfix) with ESMTP id 7A72F13C442 for ; Fri, 14 Dec 2007 10:12:30 +0000 (UTC) (envelope-from rea-fbsd@codelabs.ru) DomainKey-Signature: a=rsa-sha1; q=dns; c=simple; s=one; d=codelabs.ru; h=Received:Date:From:To:Cc:Message-ID:References:MIME-Version:Content-Type:Content-Disposition:In-Reply-To:Sender:X-Spam-Status:Subject; b=PGkyrdQUSEoUVhFSStE77Y/PzGZp1zl024Pov+h1e9OvpG3x9PZA3xMOCdGZvoe32YIAN4e18cs+F9QJkzsPB2wkdOdFsm1R1svBbU0rTC05wgyc9gLk0vnKIkD/GxfK3pu17/FtQI3z6VI3WG3NEPJPFVb1g88flxink7foVlQ=; Received: from void.codelabs.ru (void.codelabs.ru [144.206.177.25]) by pobox.codelabs.ru with esmtpsa (TLSv1:AES256-SHA:256) id 1J37La-0007BK-1V; Fri, 14 Dec 2007 13:00:46 +0300 Date: Fri, 14 Dec 2007 13:00:44 +0300 From: Eygene Ryabinkin To: vermaden Message-ID: References: <20071214091124.F22C91D789E@f39.poczta.interia.pl> MIME-Version: 1.0 Content-Type: text/plain; charset=koi8-r Content-Disposition: inline In-Reply-To: <20071214091124.F22C91D789E@f39.poczta.interia.pl> Sender: rea-fbsd@codelabs.ru X-Spam-Status: No, score=-2.3 required=4.0 tests=ALL_TRUSTED,AWL,BAYES_20 Cc: freebsd-net@freebsd.org Subject: Re: default route X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Dec 2007 10:12:30 -0000 Good day. Fri, Dec 14, 2007 at 10:11:24AM +0100, vermaden wrote: > network 10.0.0.0/24 is put on rl0 and 192.168.0.0/16 > is on rl1, default router is set to 10.0.0.1 on /etc/rc.conf as > defaultrouter="10.0.0.1", the problem: > > When I ping some box from 10.0.0.0 network, it responds, when some box from > 10.0.0.0 network ping my box, my box responds, when I ping someone from > 192.168.0.0 network, he responds, when someone from 192.168.0.0 network > pings me my box does not response, propably packets are coming IN by rl1 > and going out by defaultgateway 10.0.0.1 so thru rl0, 1. You can inspect where the system will send the packet for the host in 192.168/16 by doing 'route get 192.168.X.Y'. In normal (or simple) conditions this should give you rl1, since 192.168 sits on that interface (provided that you didn't played with routing table manually). 2. When someone from 192.168 pings you, you can spawn two tcpdump instances: 'tcpdump -lvvni rl0 icmp' and 'tcpdump -lvvni rl1 icmp' and watch for the ICMP packets and interfaces on which they are coming in/going out. 3. Check your firewall: may be it is blocking ICMP replies to the 192.168/16. Or may be some external firewall blocks ping attempts from 192.168/16. Tcpdump should show you the overall picture. -- Eygene