Date: Tue, 10 Oct 2000 17:59:42 -0400 From: "Troy Settle" <troy@psknet.com> To: "Doug Poland" <doug@polands.org> Cc: <freebsd-questions@freebsd.org> Subject: RE: Routing without ipfw? Message-ID: <BFEGKDHLHDNOJEIHJDBAKEDPCAAA.troy@psknet.com> In-Reply-To: <NDBBKMNOJKJGAEKJNLIAMEICELAA.doug@polands.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Ok. You're using non-routable IPs. You /can/ use these, but only internally. You do indeed need to have natd set up. There's a nice tutorial at http://www.defcon1.org on how to get this going. Just search for 'natd'. There's another tutorial at http://www.freebsddiary.org/ipfw.html. Both seem to be decent (it's actually been a couple years since I've used natd, so I'll be of little help from here out). The thing is for this to work, you would need to add a static route in the router at 24.164.244.1. I can almost guarantee you that this will not happen. Even if it did, it would do no good as it wouldn't be permitted on the Internet-at-large. So, go read those tutorials, try it out, and be happy. It will work, you got the parts, it's just a matter of getting them fit together just right. -- Troy Settle Pulaski Networks 540.994.4254 It's always a long day, 86400 doesn't fit into a short > -----Original Message----- > From: Doug Poland [mailto:doug@polands.org] > Sent: Tuesday, October 10, 2000 5:28 PM > To: Troy Settle > Cc: owner-freebsd-questions@freebsd.org > Subject: RE: Routing without ipfw? > > > > > > > > So in my futile effort to get "routing" working > > > between ed0 and ed1, all I should have to do is set > > > > > > /etc/rc.conf ... gateway_enable="YES" > > > > > > and reboot. So if it's not working, how can I > > > diagnose and fix my machine's inability to route? > > > > > > > Post the output of the following 3 commands: > > > > ifconfig -au > > netstat -rn > > sysctl net.inet.ip.forwarding > > > > Also give a detailed description of exactly what you want to route. > > > > >From that, I'm sure there's a ton of people that can help you > get things > > sorted out. Make sure that you do NOT have IPFW loaded or natd running. > > > > -- > > Troy Settle > > Pulaski Networks > > 540.994.4254 > > > > It's always a long day, 86400 doesn't fit into a short > > > > Here are the data... > > nebo# fgrep -i firewall /etc/rc.conf > firewall_enable="YES" > firewall_script="/etc/rc.firewall" > firewall_type="open" > firewall_quiet="NO" > > > nebo# ps -aux | grep natd > root 586 0.0 3.4 1000 592 p0 R+ 4:20PM 0:00.11 grep natd > nebo# > > > nebo% ifconfig -au > ed0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500 > inet6 fe80::200:c0ff:fef7:dc9e%ed0 prefixlen 64 scopeid 0x1 > inet 24.164.246.248 netmask 0xfffffc00 broadcast 255.255.255.255 > ether 00:00:c0:f7:dc:9e > ed1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500 > inet 10.20.1.129 netmask 0xffff0000 broadcast 10.20.255.255 > inet6 fe80::200:e9ff:fef9:107d%ed1 prefixlen 64 scopeid 0x2 > ether 00:00:e9:f9:10:7d > lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384 > inet6 fe80::1%lo0 prefixlen 64 scopeid 0x8 > inet6 ::1 prefixlen 128 > inet 127.0.0.1 netmask 0xff000000 > > > nebo% netstat -rn > Routing tables > > Internet: > Destination Gateway Flags Refs Use Netif > Expire > default 24.164.244.1 UGSc 35 126 ed0 > 10.20/16 link#2 UC 0 0 ed1 => > 10.20.1.123 0:20:af:32:d3:37 UHLW 0 267 ed1 => > 10.20.1.128 0:0:c0:5d:35:ec UHLW 0 2 > ed1 472 > 10.20.1.129 0:0:e9:f9:10:7d UHLW 2 394 lo0 > 10.20.1.133 0:80:29:63:b8:99 UHLW 1 13 > ed1 957 > 10.20.1.134 0:0:c0:39:c6:9e UHLW 1 311 > ed1 748 > 24.164.244/22 link#1 UC 0 0 ed0 => > 24.164.244.1 0:1:64:f6:48:54 UHLW 37 95 > ed0 1186 > => > 24.164.244.1/32 24.164.246.248 UGSc 0 0 ed0 > 24.164.246.248 0:0:c0:f7:dc:9e UHLW 1 0 lo0 => > 24.164.246.248/32 10.20.1.129 UGSc 0 0 ed1 > 127.0.0.1 127.0.0.1 UH 0 0 lo0 > > Note: I added to the routing table thusly... > nebo# history | grep route > 70 14:15 route add -net 24.164.244.1 24.164.246.248 > 72 14:25 route add -net 24.164.246.248 10.20.1.129 > > > > nebo% sysctl net.inet.ip.forwarding > net.inet.ip.forwarding: 1 > > > What I'm trying to do is get nebo to route ip packets > and act as a gateway for my network. Here's an example. > > I have a machine called jericho (10.20.1.134) > When I ping 10.20.1.129 ( nebo -- ed1 ) this is what I > get... > > jericho{djp}% ping -c5 10.20.1.129 > PING 10.20.1.129 (10.20.1.129): 56 data bytes > 64 bytes from 10.20.1.129: icmp_seq=0 ttl=255 time=1.502 ms > 64 bytes from 10.20.1.129: icmp_seq=1 ttl=255 time=1.452 ms > 64 bytes from 10.20.1.129: icmp_seq=2 ttl=255 time=1.451 ms > 64 bytes from 10.20.1.129: icmp_seq=3 ttl=255 time=1.454 ms > 64 bytes from 10.20.1.129: icmp_seq=4 ttl=255 time=1.452 ms > > --- 10.20.1.129 ping statistics --- > 5 packets transmitted, 5 packets received, 0% packet loss > round-trip min/avg/max/stddev = 1.451/1.462/1.502/0.020 ms > jericho{djp}% > > When I ping 24.164.246.248 ( nebo -- ed0 ) this is what I get... > > jericho{djp}% ping -c5 24.164.246.248 > PING 24.164.246.248 (24.164.246.248): 56 data bytes > 64 bytes from 24.164.246.248: icmp_seq=0 ttl=255 time=1.522 ms > 64 bytes from 24.164.246.248: icmp_seq=1 ttl=255 time=1.467 ms > 64 bytes from 24.164.246.248: icmp_seq=2 ttl=255 time=1.470 ms > 64 bytes from 24.164.246.248: icmp_seq=3 ttl=255 time=1.468 ms > 64 bytes from 24.164.246.248: icmp_seq=4 ttl=255 time=1.470 ms > > --- 24.164.246.248 ping statistics --- > 5 packets transmitted, 5 packets received, 0% packet loss > round-trip min/avg/max/stddev = 1.467/1.479/1.522/0.021 ms > jericho{djp}% > > When I ping 24.164.244.1 (my cable modem? or the roadrunner > cable modem) I get... > > jericho{djp}% ping -c5 24.164.244.1 > PING 24.164.244.1 (24.164.244.1): 56 data bytes > > and it eventually times out. > > > Regards, > Doug > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?BFEGKDHLHDNOJEIHJDBAKEDPCAAA.troy>