From owner-freebsd-questions Mon Dec 10 21:11:33 2001 Delivered-To: freebsd-questions@freebsd.org Received: from services.webwarrior.net (overlord-host99.dsl.visi.com [209.98.86.99]) by hub.freebsd.org (Postfix) with ESMTP id 941AD37B41C for ; Mon, 10 Dec 2001 21:11:16 -0800 (PST) Received: from twincat.vladsempire.net (hutch-1063.hutchtel.net [206.10.69.63]) by services.webwarrior.net (Postfix) with ESMTP id 7FE8C4A9 for ; Mon, 10 Dec 2001 23:11:24 -0600 (CST) Received: by twincat.vladsempire.net (Postfix, from userid 1001) id 708443864; Mon, 10 Dec 2001 23:11:20 +0000 (GMT) Date: Mon, 10 Dec 2001 23:11:20 +0000 From: Josh Paetzel To: Donnie Jones Cc: freebsd-questions@FreeBSD.ORG Subject: Re: FreeBSD gateway/router setup; needs help. Message-ID: <20011210231120.B397@twincat.vladsempire.net> Mail-Followup-To: Donnie Jones , freebsd-questions@FreeBSD.ORG References: <20011211030146.34292.qmail@web20601.mail.yahoo.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20011211030146.34292.qmail@web20601.mail.yahoo.com>; from donniejones18@yahoo.com on Mon, Dec 10, 2001 at 07:01:46PM -0800 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Mon, Dec 10, 2001 at 07:01:46PM -0800, Donnie Jones wrote: > Hello all, > > I know I've been bothering you all for a bit about my > gateway/router setup for my LAN, but I am still have > problems (obviously). :) > > I've attached the configuration files that I am using > in hopes someone will see maybe an error that I can't > find. > > I am using freebsd 4.4 with a recompiled kernel to > include: > options IPFIREWALL > options IPFIREWALL_LOG > options IPDIVERT > > > My LAN is able to connect to each other and ping each > other, but the computers on the internal network can't > access the outside internet. > > Is there any dns configurations I may need? > Or a change to my routing tables to route from the > internal network to the outside access? > > Thanks for your time, > > -Donnie In rc.conf: remove natd_interface="fxp0" remove natd_flags="" remove firewall_enable="YES" remove firewall_type="open" add ipfilter_enable="YES" add ipfilter_rules="/etc/ipf.rules" For the configuration of ipnat or ipfilter, take a look at /usr/src/contrib/ipfilter/rules Tons of neat examples. You also might note that there is a lot more documentation for ipfw than for ipf in the freebsd handbook. Not saying that one is better than the other, just commenting about docs. Josh To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message