From owner-freebsd-questions Tue Oct 3 16:23:23 2000 Delivered-To: freebsd-questions@freebsd.org Received: from computer-exchange.com (extreme-colo.meganet.net [209.213.64.253]) by hub.freebsd.org (Postfix) with ESMTP id C85D337B503 for ; Tue, 3 Oct 2000 16:23:18 -0700 (PDT) Date: Tue, 3 Oct 2000 19:28:40 -0400 Message-Id: <200010031928.AA15859904@computer-exchange.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii From: "Eli Stair" Reply-To: To: Subject: Re: NATD,IPFW error:"Failed to write packet back:Permission X-Mailer: Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG ....Continuing the saga..... >Your lo0 interface is not configured, make sure to include `lo0' in the >`network_interfaces' list in /etc/rc.conf, or set its value to `auto' >to make it automatically filled with the output of `ifconfig -l'. You were entirely correct about this, it was the most obvious thing, but neglected to check it because, of course, it was so obvious :) Thanks. >As for the second problem (you can't reach the world from internal >machines), >try running natd manually with `natd -v -n xl1', and send me some >output >from it, when you, say, ping outside host from any of your local >machines. Ok, output is this: SHRIKE# natd -v -n xl1 natd[262]: Aliasing to 24.216.250.161, mtu 1500 bytes When I ping, try to access web pages, etc. through the BSDgateway, I get "host not found" on the internal client machine. I do have the BSD box (192.168.0.1) set as the gateway on these. I'm stumped! I'm getting no errors (on the BSD gateway/FW box) on boot or during use, everything checks out ok and *should* be working. Any ideas on what I should try? Thanks a million (if I had it, it'd be yours ;) for your input and time, it's giving me hope at least where I don't have experience. /eli > > In response to Ruslan Ermilov, here are some local settings from my > machine. Also Ruslan, I do have GATEWAY_ENABLE set to yes, and the > clients do have the BSD box set as gateway (192.168.0.1). Thanks > for your help :) > > /eli > > ######################################## > > Output from ipfw list: > 00050 divert 8668 ip from any to any via xl1 > 00100 allow ip from any to any via lo0 > 00200 deny ip from any to 127.0.0.0/8 > 65000 allow ip from any to any > 65535 allow ip from any to any > > > output of ifconfig -a inet: > > xl0: flags=8843 mtu 1500 > inet 192.168.0.1 netmask 0xffffff00 broadcast 192.168.0.255 > xl1: flags=8843 mtu 1500 > inet 24.216.250.161 netmask 0xffffff80 broadcast 255.255.255.255 > lo0: flags=8008 mtu 16384 > gif0: flags=8010 mtu 1280 > gif1: flags=8010 mtu 1280 > gif2: flags=8010 mtu 1280 > gif3: flags=8010 mtu 1280 > faith0: flags=8000 mtu 1500 > > Output from netstat -rn -finet > Routing tables > > Internet: > Destination Gateway Flags Netif Expire > default 24.216.250.129 UGSc 2 4 xl1 > 24.216.250.128/25 link#2 UC 0 0 xl1 => > 24.216.250.129 0:20:40:66:77:6d UHLW 2 0 xl1 1145 > 192.168 link#1 UC To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message