From owner-freebsd-questions Tue Nov 7 16:57:34 2000 Delivered-To: freebsd-questions@freebsd.org Received: from backup.af.speednet.com.au (af.speednet.com.au [202.135.188.244]) by hub.freebsd.org (Postfix) with ESMTP id ED79F37B4C5 for ; Tue, 7 Nov 2000 16:57:25 -0800 (PST) Received: from backup.af.speednet.com.au (backup.af.speednet.com.au [172.22.2.4]) by backup.af.speednet.com.au (8.11.0/8.11.0) with ESMTP id eA80ukB16203; Wed, 8 Nov 2000 11:56:47 +1100 (EST) (envelope-from andyf@speednet.com.au) Date: Wed, 8 Nov 2000 11:56:46 +1100 (EST) From: Andy Farkas X-Sender: andyf@backup.af.speednet.com.au To: "Zaitsau, Andrei" Cc: "'Roop Nanuwa'" , Anthony Rubin , Anthony Fox , questions@FreeBSD.ORG Subject: RE: two ethernets, nat, firewall In-Reply-To: <054F7DAA9E54D311AD090008C74CE9BD01766D6D@exchange.panasonicfa.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Tue, 7 Nov 2000, Zaitsau, Andrei wrote: > Hold on... > He said he has 2 NICs on the same IRQ in in one box this probably coups the > problem. That shouldn't be a problem because he said they are PCI cards which can share IRQs. I assume that the "link" light is on? > I believe he should first be able "to see other machines" before bring up > NAT and IPFW to work.. Yes, that is a good idea. But I believe his problem is with routing. The default route is probably set to the modem. There needs to be an additional static route to the internal network. Try adding the following to /etc/rc.conf (after defaultrouter): static_routes="homenet" route_homenet="192.168.0.0/24 192.168.0.1 -interface" ...and then see if you can "see other machines". Make sure your routing table is correct (netstat -rn). > .... > > -----Original Message----- > From: Roop Nanuwa [mailto:roop@gw.carpoolbc.com] > Sent: Tuesday, November 07, 2000 11:31 AM > To: Anthony Fox > Cc: Anthony Rubin; questions@FreeBSD.ORG > Subject: Re: two ethernets, nat, firewall > > Did you remember to recompile the kernel with: > options IPFIREWALL > options IPDIVERT > > It could be that you have all the configuration files right, but your > kernel isn't configured properly... > > RSN > > On Tue, 7 Nov 2000, Anthony Fox wrote: > > > > > > > You need the following line in /etc/rc.conf: > > > > > > gateway_enable="YES" > > > > got this. > > > > > > > > This allows FreeBSD to forward packets. You can change this setting > without > > > rebooting with the following command: > > > > > > sysctl -w net.inet.ip.forwarding=1 > > > > > > How are you starting natd? > > > > natd gets started in /etc/rc.conf > > > > dmesg says that both interfaces are on the same irq. they are both > > pci cards. is this a problem? if it is, how do i set them to > > different irqs? do i have to recompile the kernel? > > > > thanks, > > anthony > > -- :{ andyf@speednet.com.au Andy Farkas System Administrator Speednet Communications http://www.speednet.com.au/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message