From owner-freebsd-questions@FreeBSD.ORG Tue Apr 19 10:04:08 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2B7CF16A4CE for ; Tue, 19 Apr 2005 10:04:08 +0000 (GMT) Received: from jeremino.homeunix.net (jeremino.xs4all.nl [80.126.224.163]) by mx1.FreeBSD.org (Postfix) with ESMTP id B5F8943D48 for ; Tue, 19 Apr 2005 10:04:07 +0000 (GMT) (envelope-from spam@jeremino.homeunix.net) Received: from jeremina.homeunix.net ([10.0.0.5]) by jeremino.homeunix.net with smtp (Exim 4.42) id 1DNpaQ-0009cB-Ak for freebsd-questions@freebsd.org; Tue, 19 Apr 2005 12:04:06 +0200 Message-Id: <2130573.hCrSZeGbPG@not_a_message_id> From: Kees Plonsz To: freebsd-questions@freebsd.org Date: Tue, 19 Apr 2005 12:04:04 +0200 References: Lines: 72 Organization: Chaos User-Agent: KNode/0.8.0 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7Bit Subject: Re: NATD server problem on 5.3 ? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 19 Apr 2005 10:04:08 -0000 faisal gillani wrote on Tuesday 19 April 2005 10:08 in the group list.freebsd.questions: > Well i recently installed my first natd server on > freebsd 5.3, but its not working ? > > here is wat i did .. > > 1. compiles kernal with the following options > > options IPFIREWALL > options IPV6FIREWALL > options IPDIVERT > > 2. made the following entries in rc.conf > > defaultrouter="10.0.0.1" > gateway_enable="YES" > hostname="natserver" > ifconfig_fxp0="inet 192.168.0.1 netmask > 255.255.255.0" > ifconfig_xl0="inet 10.0.0.5 netmask 255.255.255.0" > firewall_enable="yes" > natd_enable="yes" > natd_interface="xl0" > natd_flags="-f /etc/natd.conf" > > 3. made the following entries in rc.firewall > > > /sbin/ipfw -f flush > /sbin/ipfw add allow all from any to any via fxp0 > /sbin/ipfw add allow icmp from any to any out via xl0 > /sbin/ipfw add allow all from any to any via lo0 > /sbin/ipfw add divert natd ip from any to any via xl0 > /sbin/ipfw add allow ip from any to 10.0.0.5 in recv > xl0 > /sbin/ipfw add allow ip from 10.0.0.5 to any out xmit > xl0 > > 4. configure the windows clients as follows > > ipaddress = 192.168.0.3 > subnet = 255.255.255.0 > gateway = 192.168.0.1 > dns server = 192.168.0.2 "dns server capable of > resolving internet & local address" > > this is all that i have done but still interet is not > working on clients , what should i do now ? > It seems all quite well. You can debug this kind of problems yourself. On the natd-server you start: # tcpdump -i xl0 Then you start on your window client: ( any ip address wich responds to ping will do ) # ping 194.109.21.3 Then you have to see on the natd-server: 11:57:21.777620 IP natd-server > xs2.xs4all.nl: icmp 64: echo request seq 0 11:57:21.785412 IP xs2.xs4all.nl > natd-server: icmp 64: echo reply seq 0 If it doesnot show anything, you can repeat this for your fxp0 interface ( where the window client is connected i suppose ) >From the results you can conclude wich connection is (not) working -- Key-ID = A6581435 E-mail address is valid