Date: Tue, 3 Oct 2000 19:32:56 +0300 From: Ruslan Ermilov <ru@sunbay.com> To: Eli Stair <estair@computer-exchange.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: NATD,IPFW error:"Failed to write packet back:Permission denied" Message-ID: <20001003193256.B63113@sunbay.com> In-Reply-To: <200010030914.AA30277826@computer-exchange.com>; from estair@computer-exchange.com on Tue, Oct 03, 2000 at 09:14:01AM -0400 References: <200010030914.AA30277826@computer-exchange.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Oct 03, 2000 at 09:14:01AM -0400, Eli Stair wrote: > This is an update to a post I made this morning (8:15am EST). > > In response to Ruslan Ermilov, here are some local settings from my > machine. Also Ruslan, I do have GATEWAY_ENABLE set to yes, and the > clients do have the BSD box set as gateway (192.168.0.1). Thanks > for your help :) > > /eli > > ######################################## > > Output from ipfw list: > 00050 divert 8668 ip from any to any via xl1 > 00100 allow ip from any to any via lo0 > 00200 deny ip from any to 127.0.0.0/8 > 65000 allow ip from any to any > 65535 allow ip from any to any > > > output of ifconfig -a inet: > > xl0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500 > inet 192.168.0.1 netmask 0xffffff00 broadcast 192.168.0.255 > xl1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500 > inet 24.216.250.161 netmask 0xffffff80 broadcast 255.255.255.255 > lo0: flags=8008<LOOPBACK,MULTICAST> mtu 16384 > gif0: flags=8010<POINTOPOINT,MULTICAST> mtu 1280 > gif1: flags=8010<POINTOPOINT,MULTICAST> mtu 1280 > gif2: flags=8010<POINTOPOINT,MULTICAST> mtu 1280 > gif3: flags=8010<POINTOPOINT,MULTICAST> mtu 1280 > faith0: flags=8000<MULTICAST> mtu 1500 > > Output from netstat -rn -finet > Routing tables > > Internet: > Destination Gateway Flags Netif Expire > default 24.216.250.129 UGSc 2 4 xl1 > 24.216.250.128/25 link#2 UC 0 0 xl1 => > 24.216.250.129 0:20:40:66:77:6d UHLW 2 0 xl1 1145 > 192.168 link#1 UC 0 0 xl0 => > Your lo0 interface is not configured, make sure to include `lo0' in the `network_interfaces' list in /etc/rc.conf, or set its value to `auto' to make it automatically filled with the output of `ifconfig -l'. As for the second problem (you can't reach the world from internal machines), try running natd manually with `natd -v -n xl1', and send me some output from it, when you, say, ping outside host from any of your local machines. -- Ruslan Ermilov Oracle Developer/DBA, ru@sunbay.com Sunbay Software AG, ru@FreeBSD.org FreeBSD committer, +380.652.512.251 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001003193256.B63113>