From owner-freebsd-isp Mon Nov 11 12:52:23 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id MAA08864 for isp-outgoing; Mon, 11 Nov 1996 12:52:23 -0800 (PST) Received: from enetis.net (enet1.enetis.net [206.31.204.1]) by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id MAA08844 for ; Mon, 11 Nov 1996 12:52:11 -0800 (PST) Received: from enet1 (enet1.enetis.net [206.31.204.1]) by enetis.net (8.7.5/8.6.9) with SMTP id NAA25849 for ; Mon, 11 Nov 1996 13:50:50 -0700 (MST) Date: Mon, 11 Nov 1996 13:50:50 -0700 (MST) From: Justin England X-Sender: jengland@enet1 To: isp@FreeBSD.ORG Subject: SOLVED!! FreeBSD gateway/routing problems!?!? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Thanks to everybody who responed with suggestions on my problem! The solution should make you chuckle a bit. The FreeBSD machine was doing exactly what is was supposed to do, forwarding packets between the two nets/interfaces. The problem was that I configed my Cisco to prevent IP spoofing some time back, therefore is was filtering out all 205.0 packets, just like it should. After I changed the access-lists on the Cisco, everything works fine! Justin England On Mon, 11 Nov 1996, Justin England wrote: > Here's the situation: > > I have 2 class-C IP blocks. The main network is 206.31.204.0, the second > network is 206.31.205.0. I have set up a FreeBSD machine with two > network cards, ed0:206.31.205.1 and ed1:206.31.204.14. I am creating a > gateway from the main 204 net to the 205 net using the FreeBSD > (2.1.5-RELEASE) machine. (yes, I have the gateway option compiled in) > > Here's what I can do: > > I can get TO the 205 net FROM the 204 net without any problems. > > (traceroute from 206.31.204.1 to 206.31.205.2) > 1 hillsnet.enetis.net (206.31.204.14) 1 ms 2 ms 1 ms > 2 206.31.205.2 (206.31.205.2) 2 ms (ttl=249!) 3 ms (ttl=249!) 2 ms (ttl=249!) > > And I can get TO the 204 net FROM the 205 net without any problems. > On the gateway machine, I have the deffault route pointing to my border > router and all machines on the 205 net have 206.31.205.1 as the default > route. I have a static route from my upstream pointing the two nets (204 > and 205) to my router. I have a static route in my Cisco pointing the 205 > net back to the 206.31.204.14 interface on the gateway machine. Between > the two nets (204 and 205), everything seems to work without any problems. > > Here's the problem: > > >From my 205 net, I CAN'T get to the outside world, and the outside world > CAN'T get to my 205 net. I have an account with Netcom, and when I > traceroute FROM netcom TO my 205 net, it stops at the 206.31.204.14 > interface in the gateway machine. When I traceroute FROM my 205 net TO > the outside world it stops at my router. > > Here's the question: > > Everything looks properly configured from my side. Am I having a problem > with my router configuration, or is the problem with my FreeBSD gateway > configuration??? I have double and triple checked my routing tables on > my router and my gateway machine, and everything LOOKS like it should > work!!!! There has to be something that I am overlooking, that should be > very simple to figure out, but I am goin nuts tring to fing it!!! > > Any insight on my problem would be appreciated!! > > TIA, > > Justin England >