From owner-freebsd-net  Wed Oct 28 17:14:33 1998
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id RAA01443
          for freebsd-net-outgoing; Wed, 28 Oct 1998 17:14:33 -0800 (PST)
          (envelope-from owner-freebsd-net@FreeBSD.ORG)
Received: from dns.webwizard.net.mx (dns.webwizard.com.mx [148.245.50.27])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id RAA01388
          for <freebsd-net@FreeBSD.ORG>; Wed, 28 Oct 1998 17:14:18 -0800 (PST)
          (envelope-from eculp@webwizard.org.mx)
Received: from webwizard.org.mx (dns.webwizard.com.mx [148.245.50.27])
	by dns.webwizard.net.mx (8.9.1/8.9.1) with ESMTP id TAA12573;
	Wed, 28 Oct 1998 19:14:02 -0600 (CST)
	(envelope-from eculp@webwizard.org.mx)
Message-ID: <3637C15A.60F64D7B@webwizard.org.mx>
Date: Wed, 28 Oct 1998 19:14:02 -0600
From: Edwin Culp <eculp@webwizard.org.mx>
Reply-To: eculp@mexcom.net.mx
X-Mailer: Mozilla 4.5b2 [en] (X11; I; FreeBSD 3.0-CURRENT i386)
X-Accept-Language: en
MIME-Version: 1.0
To: austin wood <awood@plasm.net>
CC: freebsd-net@FreeBSD.ORG
Subject: Re: NATD Question
References: <Pine.BSF.4.02A.9810281446260.29577-100000@proto.plasm.net>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

austin wood wrote:

> I have a modem connection and I'm sharing it with my LAN.  I (almost)
> succesfully configured natd and/or ipfw to act as a gateway.  The setup
> looks like this:
>
> ---------------   Modem      ----------------  10BaseT  ---------------
> |   Internet  |--------------| FreeBSD Box  |-----------| Other Boxes |
> ---------------              ----------------           ---------------
>
> There is actually a hub bettween the FreeBSD Box and the Other Boxes.  The
> problem is that I when I use a web browser on one of the "Other Boxes", it
> get's stuck on "Waiting for reply".  However, this only happens on about
> 20% of the websites.  Most of the time it works fine.  Here are 2 of the non
> working web sites:
>
>         http://www.idsoftware.com/
>         http://www.futurestep.com/
>

I'm using natd and they both come up fine, although I'm not using a ppp link,
but one ip for a network.  On ppp links, I like to use ppp -ddial -alias for my
connections and not use natd on my, in this case, tun0.  I also sometimes use
kernel pppd between the office for my home network and use proxyarp in the
options file.  I haven't had any problems with that either.  It just grabs the
MAC off my ethernet card and goes to work:-)

As far as configuration, you might try the firewall_enable="YES"
firewall_type="open" natd_enable="YES" natd_interface=ppp0 in your rc.conf
which is similar to what you have.

I would still go with ppp -alias :-)  the famous "kiss" concept :-)

Good luck,

ed


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message