From owner-freebsd-questions  Mon Feb 19 17:49:42 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from c000.snv.cp.net (c000-h007.c000.snv.cp.net [209.228.32.71])
	by hub.freebsd.org (Postfix) with SMTP id D73C337B491
	for <questions@FreeBSD.org>; Mon, 19 Feb 2001 17:49:39 -0800 (PST)
Received: (cpmta 11229 invoked from network); 19 Feb 2001 17:49:39 -0800
Received: from adsl-64-167-104-194.dsl.snfc21.pacbell.net (HELO chuckpc) (64.167.104.194)
  by smtp.rider.net (209.228.32.71) with SMTP; 19 Feb 2001 17:49:39 -0800
X-Sent: 20 Feb 2001 01:49:39 GMT
From: "Chuck Rider" <Chuck@Rider.net>
To: <questions@FreeBSD.org>
Subject: Gateway woes....
Date: Mon, 19 Feb 2001 17:49:39 -0800
Message-ID: <BIENILOIPEJCEDMOPKEFCENECAAA.Chuck@Rider.net>
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0)
Importance: Normal
X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

I am trying to set up a firewall using a FreeBSD machine.  The first step I
am trying is a basic gateway and am not having much luck.

I am running FreeBSD version 4.2 in a box with two Ethernet cards.  dc0 is
connected to the DSL modem, xl0 is connected to my home network hub.  From
the FreeBSD machine I can ping anything I want.  On the internet using names
or ip addresses and on my home network using ip addresses.  From a machine
on my home network I can ping either Ethernet address on the gateway by ip
address, but I cannot ping anything on the internet.  I assume I am not
actually forwarding packets, but am at a loss as to what to try next.  Any
help would be greatly appreciated.

sysctl -a | grep forward yields:
net.inet.ip.forwarding: 1
net.inet.ip.fastforwarding: 0
net.inet6.ip6.forwarding: 0

here is my rc.conf file
# This file now contains just the overrides from /etc/defaults/rc.conf
# please make all changes to this file.

# Enable network daemons for user convenience.
# -- sysinstall generated deltas -- #
network_interfaces="dc0 xl0 lo0"
ifconfig_dc0="inet 64.167.104.195  netmask 255.255.255.248"
ifconfig_xl0="inet 10.0.0.2 netmask 255.255.255.0"
ifconfig_lo0="inet 127.0.0.1"
defaultrouter="64.167.104.193"
static_routes=""
gateway_enable="YES"
hostname="crweb.theriders.net"
moused_port="/dev/psm0"
moused_type="auto"
moused_enable="YES"
crweb#



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message