From owner-freebsd-stable Thu Nov 21 15:26:49 2002 Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 504D337B401 for ; Thu, 21 Nov 2002 15:26:47 -0800 (PST) Received: from tomts21-srv.bellnexxia.net (tomts21.bellnexxia.net [209.226.175.183]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5EEA943E3B for ; Thu, 21 Nov 2002 15:26:46 -0800 (PST) (envelope-from matt@gsicomp.on.ca) Received: from xena.gsicomp.on.ca ([65.95.180.39]) by tomts21-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with ESMTP id <20021121232645.ONZO981.tomts21-srv.bellnexxia.net@xena.gsicomp.on.ca>; Thu, 21 Nov 2002 18:26:45 -0500 Received: from hermes (hermes.gsicomp.on.ca [192.168.0.18]) by xena.gsicomp.on.ca (8.11.3/8.11.3) with SMTP id gALNQiU44997; Thu, 21 Nov 2002 18:26:44 -0500 (EST) (envelope-from matt@gsicomp.on.ca) Message-ID: <00c801c291b5$747862f0$1200a8c0@gsicomp.on.ca> From: "Matthew Emmerton" To: "Rob B" , "Archie Cobbs" Cc: References: <200211210454.gAL4sFIV063929@arch20m.dellroad.org> <01cb01c2911b$83e59180$3164a8c0@number6.loop.bpa.nu> Subject: Re: ppp works, but natd not working Date: Thu, 21 Nov 2002 18:26:41 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4807.1700 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4910.0300 Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG ----- Original Message ----- From: "Rob B" To: "Archie Cobbs" Cc: Sent: Thursday, November 21, 2002 12:04 AM Subject: Re: ppp works, but natd not working > > Rob B wrote: > > > [root@erwin]/usr/local/etc: ping www.ozemail.com.au > > > PING www.ozemail.com.au (203.102.166.18): 48 data bytes > > > 56 bytes from 203.102.166.18: icmp_seq=0 ttl=56 time=132.990 ms > > > 56 bytes from 203.102.166.18: icmp_seq=1 ttl=56 time=121.214 ms > > > 56 bytes from 203.102.166.18: icmp_seq=2 ttl=56 time=120.237 ms > > > 56 bytes from 203.102.166.18: icmp_seq=3 ttl=56 time=118.285 ms > > > 56 bytes from 203.102.166.18: icmp_seq=4 ttl=56 time=114.380 ms > > > ^C > > > --- www.ozemail.com.au ping statistics --- > > > 5 packets transmitted, 5 packets received, 0% packet loss > > > round-trip min/avg/max/stddev = 114.380/121.421/132.990/6.240 ms > > > > > > but sourcing the pings from the internal interface doesn't: > > > [root@erwin]/usr/local/etc: ping -S 192.168.100.10 www.ozemail.com.au > > > PING www.ozemail.com.au (203.102.166.18) from 192.168.100.10: 48 data > bytes > > > ^C > > > --- www.ozemail.com.au ping statistics --- > > > 12 packets transmitted, 0 packets received, 100% packet loss > > > > > > Both ppp and natd are running: > > > [root@erwin]/usr/local/etc: ps fax > > > PID TT STAT TIME COMMAND > > > > > > 704 ?? Is 0:00.00 natd -dynamic -interface tun0 > > > 737 ?? Ss 0:00.31 ppp -auto -alias demand > > > > > > Just for completeness - the pings (or traceroutes for that matter) don't > > > work from the LAN either. What could be wrong? > > > > Just a thought.. what does 'sysctl net.inet.ip.forwarding' say? > > It should be equal to 1. > > [root@erwin]/usr/local/etc: sysctl net.inet.ip.forwarding > net.inet.ip.forwarding: 1 > > cheers, > rob Since ppp has built in NAT support (enabled with the -nat flag), is there any special reason you using natd? If you want to use natd, you need to have ipfw running with a divert rule that sends the packets to natd to process. This is automatically done for you if you've got natd_enable="YES", firewall_enable="YES" and firewall_type="OPEN" or "CLIENT" or "SIMPLE" in /etc/rc.conf. What does 'ipfw show' show? -- Matt Emmerton To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message