From owner-freebsd-questions Tue Oct 3 9:36:36 2000 Delivered-To: freebsd-questions@freebsd.org Received: from whale.sunbay.crimea.ua (whale.sunbay.crimea.ua [212.110.138.65]) by hub.freebsd.org (Postfix) with ESMTP id C5B9637B502 for ; Tue, 3 Oct 2000 09:36:29 -0700 (PDT) Received: (from ru@localhost) by whale.sunbay.crimea.ua (8.11.0/8.11.0) id e93GWug63663; Tue, 3 Oct 2000 19:32:56 +0300 (EEST) (envelope-from ru) Date: Tue, 3 Oct 2000 19:32:56 +0300 From: Ruslan Ermilov To: Eli Stair Cc: freebsd-questions@FreeBSD.ORG Subject: Re: NATD,IPFW error:"Failed to write packet back:Permission denied" Message-ID: <20001003193256.B63113@sunbay.com> Mail-Followup-To: Eli Stair , freebsd-questions@FreeBSD.ORG References: <200010030914.AA30277826@computer-exchange.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <200010030914.AA30277826@computer-exchange.com>; from estair@computer-exchange.com on Tue, Oct 03, 2000 at 09:14:01AM -0400 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Tue, Oct 03, 2000 at 09:14:01AM -0400, Eli Stair wrote: > This is an update to a post I made this morning (8:15am EST). > > In response to Ruslan Ermilov, here are some local settings from my > machine. Also Ruslan, I do have GATEWAY_ENABLE set to yes, and the > clients do have the BSD box set as gateway (192.168.0.1). Thanks > for your help :) > > /eli > > ######################################## > > Output from ipfw list: > 00050 divert 8668 ip from any to any via xl1 > 00100 allow ip from any to any via lo0 > 00200 deny ip from any to 127.0.0.0/8 > 65000 allow ip from any to any > 65535 allow ip from any to any > > > output of ifconfig -a inet: > > xl0: flags=8843 mtu 1500 > inet 192.168.0.1 netmask 0xffffff00 broadcast 192.168.0.255 > xl1: flags=8843 mtu 1500 > inet 24.216.250.161 netmask 0xffffff80 broadcast 255.255.255.255 > lo0: flags=8008 mtu 16384 > gif0: flags=8010 mtu 1280 > gif1: flags=8010 mtu 1280 > gif2: flags=8010 mtu 1280 > gif3: flags=8010 mtu 1280 > faith0: flags=8000 mtu 1500 > > Output from netstat -rn -finet > Routing tables > > Internet: > Destination Gateway Flags Netif Expire > default 24.216.250.129 UGSc 2 4 xl1 > 24.216.250.128/25 link#2 UC 0 0 xl1 => > 24.216.250.129 0:20:40:66:77:6d UHLW 2 0 xl1 1145 > 192.168 link#1 UC 0 0 xl0 => > Your lo0 interface is not configured, make sure to include `lo0' in the `network_interfaces' list in /etc/rc.conf, or set its value to `auto' to make it automatically filled with the output of `ifconfig -l'. As for the second problem (you can't reach the world from internal machines), try running natd manually with `natd -v -n xl1', and send me some output from it, when you, say, ping outside host from any of your local machines. -- Ruslan Ermilov Oracle Developer/DBA, ru@sunbay.com Sunbay Software AG, ru@FreeBSD.org FreeBSD committer, +380.652.512.251 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message