From owner-freebsd-net  Wed Oct 28 12:17:09 1998
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id MAA13062
          for freebsd-net-outgoing; Wed, 28 Oct 1998 12:17:09 -0800 (PST)
          (envelope-from owner-freebsd-net@FreeBSD.ORG)
Received: from proto.plasm.net (proto.plasm.net [207.96.19.192])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id MAA13057
          for <freebsd-net@FreeBSD.ORG>; Wed, 28 Oct 1998 12:17:06 -0800 (PST)
          (envelope-from awood@plasm.net)
Received: from localhost (awood@localhost)
	by proto.plasm.net (8.9.1/8.8.7) with SMTP id PAA29729
	for <freebsd-net@FreeBSD.ORG>; Wed, 28 Oct 1998 15:16:20 -0500 (EST)
	(envelope-from awood@plasm.net)
Date: Wed, 28 Oct 1998 15:16:19 -0500 (EST)
From: austin wood <awood@plasm.net>
To: freebsd-net@FreeBSD.ORG
Subject: NATD Question
Message-ID: <Pine.BSF.4.02A.9810281446260.29577-100000@proto.plasm.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

I have a modem connection and I'm sharing it with my LAN.  I (almost)
succesfully configured natd and/or ipfw to act as a gateway.  The setup
looks like this:

---------------   Modem      ----------------  10BaseT  ---------------
|   Internet  |--------------| FreeBSD Box  |-----------| Other Boxes |
---------------              ----------------           ---------------

There is actually a hub bettween the FreeBSD Box and the Other Boxes.  The
problem is that I when I use a web browser on one of the "Other Boxes", it
get's stuck on "Waiting for reply".  However, this only happens on about
20% of the websites.  Most of the time it works fine.  Here are 2 of the non
working web sites:

	http://www.idsoftware.com/
	http://www.futurestep.com/
	
I started natd in verbose mode to see what was I could find out.  This is
the output of "natd -interface ppp0 -verbose":

Out [UDP]  10.1.1.2 -> 207.96.19.192 aliased to
	   207.96.19.192 -> 207.172.3.16
In  [UDP]  207.172.3.16 -> 207.96.19.192 aliased to 
           207.172.3.16 -> 10.1.1.2
Out [TCP]  10.1.1.2:1044 -> 192.246.40.37:80 aliased to 
           207.96.19.192:1044 -> 192.246.40.37:80
In  [TCP]  192.246.40.37:80 -> 207.96.19.192:1044 aliased to
           192.246.40.37:80 -> 10.1.1.2:1044
Out [TCP]  10.1.1.2:1044 -> 192.246.40.37:80 aliased to
           207.96.19.192:1044 -> 192.246.40.37:80
Out [TCP]  10.1.1.2:1044 -> 192.246.40.37:80 aliased to
           207.96.19.192:1044 -> 192.246.40.37:80
Out [TCP]  10.1.1.2:1044 -> 192.246.40.37:80 aliased to
           207.96.19.192:1044 -> 192.246.40.37:80
In  [TCP]  192.246.40.37:80 -> 207.96.19.192:1044 aliased to
           192.246.40.37:80 -> 10.1.1.2:1044

That is all it does.  Here are my configuration files for more
information:

/etc/services:
  	natd	  		6668/divert

/etc/firewall:
	/sbin/ipfw -f flush
	/sbin/ipfw add divert natd all from any to any via ppp0
	/sbin/ipfw add pass all from any to any

/etc/rc.conf
	gateway_enable="YES"
	firewall_enable="YES"
	network_interface="ep0 lo0"
	ifconfig_lo0="inet 127.0.0.1"
	ifconfig_ep0="inet 10.1.1.1 netmask 255.255.255.0 link2"

kernel options:
	options		IPDIVERT
	options		IPFIREWALL

That's all the things I can think of that are needed to run natd.


Thanks in Advance,
Austin Wood


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message