From owner-freebsd-questions Sun Nov 26 0:49:36 2000 Delivered-To: freebsd-questions@freebsd.org Received: from dc-mx06.cluster0.hsacorp.net (unknown [209.225.8.16]) by hub.freebsd.org (Postfix) with ESMTP id 7989337B4C5 for ; Sun, 26 Nov 2000 00:49:29 -0800 (PST) Received: from [24.216.177.202] (HELO CONCON.enterit.com) by dc-mx06.cluster0.hsacorp.net (CommuniGate Pro SMTP 3.4b1) with ESMTP id 12364488; Sun, 26 Nov 2000 01:48:37 -0700 Message-Id: <5.0.0.25.0.20001126012436.021f4288@mail.enterit.com> X-Sender: jconner@mail.enterit.com X-Mailer: QUALCOMM Windows Eudora Version 5.0 Date: Sun, 26 Nov 2000 01:26:51 -0500 To: Jim Freeze From: Jim Conner Subject: Re: Need help with natd and connecting Windows to LAN Cc: questions@freebsd.org In-Reply-To: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG This is a windows problem I am thinking. If the FBSD box can see the windows box, then the fact that the windows box can't see the router seems to me that the problem lies in the win box. That is just a quick thought at a quick glance at your problem. Someone else here might be able to give you some helpful info. At 01:06 AM 11/26/2000 -0500, Jim Freeze wrote: >I am running FBSD3.4R as a gateway/router with a Win98 box connected on >a local LAN. The gateway machine can see the internet and the Win98 box, >but the Win98 box cannot ping the gateway nor see beyond it. > >Below is some specific setup info: > >The Kernel file contains: > ># Added by JDF >options IPFIREWALL #firewall >options IPFIREWALL_VERBOSE #log dropped packets >options "IPFIREWALL_VERBOSE_LIMIT=100" #limit verbosity >#options IPFILTER_LOG # turn on logging >options IPDIVERT #divert ip's >options "ICMP_BANDLIM" > > >The network layout: > >ISP(dns1=24.5.116.15,dns2=24.5.116.17) > | > | > cable-modem > | > | > (DHCP) (eeyore1) > router/gateway > 192.168.1.1 (eeyore) > | > X (cross-over cable) > | > 192.168.1.2 > Win98Box > > >jfreeze@eeyore1 ('tty') ~ 16 -> cat /etc/hosts >127.0.0.1 localhost localhost.home.com >24.9.218.175 eeyore1 CI590846-B lxintn1.ky.home.com >24.5.116.15 dns1 >24.5.116.17 dns2 >192.168.1.1 eeyore >192.168.1.2 rabbit >(looks the same on windows) > > >root@eeyore1 ('tty') ~ 5 -> sh /etc/rc.firewall >Flushed all rules. >00000 divert 8668 ip from any to any via vx0 >00100 allow ip from any to any via lo0 >00200 deny ip from any to 127.0.0.0/8 >65000 allow ip from any to any >(temporarily turned off) > >root@eeyore1 ('tty') ~ 15 -> netstat -r >Routing tables > >Internet: >Destination Gateway Flags Refs Use Netif >Expire >default 24.9.218.1 UGSc 12 0 vx0 >24.9.218/24 link#1 UC 0 0 vx0 >24.9.218.1 0:50:f:0:3c:70 UHLW 13 0 vx0 >791 >localhost localhost UH 0 8 lo0 >192.168.1 link#2 UC 0 0 al0 >rabbit 0:a0:cc:78:23:95 UHLW 0 9 al0 >586 > >root@eeyore1 ('tty') ~ 16 -> cat /etc/resolv.conf >search lxintn1.ky.home.com >nameserver 24.5.116.17 >nameserver 24.5.116.15 > > >root@eeyore1 ('tty') ~ 17 -> ifconfig -a >vx0: flags=8843 mtu 1500 > inet 24.9.218.175 netmask 0xffffff00 broadcast 24.9.218.255 > ether 00:60:97:4f:aa:a0 >al0: flags=8843 mtu 1500 > inet 192.168.1.1 netmask 0xffffff00 broadcast 192.168.1.255 > ether ff:ff:ff:ff:ff:ff > media: autoselect (100baseTX ) > supported media: autoselect 100baseTX 100baseTX > 100baseTX 10baseT/UTP 10baseT/UTP 10baseT/UTP > >lp0: flags=8810 mtu 1500 >tun0: flags=8010 mtu 1500 >sl0: flags=c010 mtu 552 >ppp0: flags=8010 mtu 1500 >lo0: flags=8049 mtu 16384 > inet 127.0.0.1 netmask 0xff000000 > >root@eeyore1 ('tty') ~ 18 -> cat /etc/rc.conf ># This file now contains just the overrides from /etc/defaults/rc.conf ># please make all changes to this file. > ># -- sysinstall generated deltas -- # >ifconfig_ppp0="inet netmask 255.255.255.0" >network_interfaces="lo0 vx0 al0" >ifconfig_lo0="inet 127.0.0.1" >ifconfig_vx0="inet netmask 255.255.255.0" >ifconfig_al0="inet 192.168.1.1 netmask 255.255.255.0" >ifconfig_vx0="DHCP" >gateway_enable="YES" >hostname="eeyore1" >firewall_enable="YES" # Set YES to enable firewall functionality >#firewall_type="client" # Firewall type (see /etc/rc.firewall) >#firewall_type="simple" # Firewall type (see /etc/rc.firewall) >firewall_type="open" # Firewall type (see /etc/rc.firewall) >firewall_quiet="NO" # Set to YES to supress rule display >natd_enable="YES" # Enable natd (if firewall_enable == YES) >natd_interface="vx0" # Public interface or IPaddress to use >natd_flags="-f /etc/natd.conf" # Additional flags for natd > >The Win98 Network settings are: > >TCP/IP -> NETGEAR FA311 FastEthernet PCI Adapter > - Properties > - IP:192.168.1.2 > - Subnet: 255.255.255.0 > - WINS: disabled > - Gateway: 192.168.1.1 > - DNS: > - Host: rabbit > - Domain: (I don't know what to put here. I have tried > leaving it blank and 192.168.1.1) > - DNS: 24.5.116.15 > - DNS: 24.5.116.17 > - Binding: Microsoft Family Logon (I unchecked Client for Microsoft >Networks) > >------Testing the network ------- > > >From FreeBSD all seems to work. > >jfreeze@eeyore1 ('tty') ~ 12 -> ping localhost >PING localhost (127.0.0.1): 56 data bytes >64 bytes from 127.0.0.1: icmp_seq=0 ttl=255 time=1.008 ms > >jfreeze@eeyore1 ('tty') ~ 13 -> ping eeyore1 >PING eeyore1 (24.9.218.175): 56 data bytes >64 bytes from 24.9.218.175: icmp_seq=0 ttl=255 time=0.106 ms > >jfreeze@eeyore1 ('tty') ~ 14 -> ping eeyore >PING eeyore (192.168.1.1): 56 data bytes >64 bytes from 192.168.1.1: icmp_seq=0 ttl=255 time=0.098 ms > >jfreeze@eeyore1 ('tty') ~ 15 -> ping rabbit >PING rabbit (192.168.1.2): 56 data bytes >64 bytes from 192.168.1.2: icmp_seq=0 ttl=128 time=0.252 ms > >jfreeze@eeyore1 ('tty') ~ 17 -> ps waux | grep natd >root 173 0.0 0.2 432 96 ?? Ss 10:44PM 0:00.23 /sbin/natd >-f /etc/natd.conf -n vx0 > >jfreeze@eeyore1 ('tty') ~ 19 -> cat /etc/natd.conf >interface vx0 >use_sockets yes >same_ports yes >dynamic yes > > >--------From Win98-------- >ping localhost works (127.0.0.1) >ping rabbit works (192.168.1.2) >ping eeyore (192.168.1.1) - gives Request timed out. > > > >Can someone tell me what I am doing wrong here? >Thanks! > >=========================== >Jim Freeze >jim@freeze.org >=========================== > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-questions" in the body of the message - Jim - NOTJames - jconner@enterit.com - ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ - | Today's errors, in contrast: | - | Windows - "Invalid page fault in module kernel32.dll at 0032:A16F2935" | - | UNIX - "segmentation fault - core dumped" | - | Humans - "OOPS, I've fallen and I can't get up" | - -------------------------------------------------------------------------- - (To view this properly use a non-proportional font in your MUA) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message