Date: Thu, 21 Nov 2002 18:26:41 -0500 From: "Matthew Emmerton" <matt@gsicomp.on.ca> To: "Rob B" <rbyrnes@ozemail.com.au>, "Archie Cobbs" <archie@dellroad.org> Cc: <stable@FreeBSD.ORG> Subject: Re: ppp works, but natd not working Message-ID: <00c801c291b5$747862f0$1200a8c0@gsicomp.on.ca> References: <200211210454.gAL4sFIV063929@arch20m.dellroad.org> <01cb01c2911b$83e59180$3164a8c0@number6.loop.bpa.nu>
next in thread | previous in thread | raw e-mail | index | archive | help
----- Original Message ----- From: "Rob B" <rbyrnes@ozemail.com.au> To: "Archie Cobbs" <archie@dellroad.org> Cc: <stable@FreeBSD.ORG> Sent: Thursday, November 21, 2002 12:04 AM Subject: Re: ppp works, but natd not working > > Rob B wrote: > > > [root@erwin]/usr/local/etc: ping www.ozemail.com.au > > > PING www.ozemail.com.au (203.102.166.18): 48 data bytes > > > 56 bytes from 203.102.166.18: icmp_seq=0 ttl=56 time=132.990 ms > > > 56 bytes from 203.102.166.18: icmp_seq=1 ttl=56 time=121.214 ms > > > 56 bytes from 203.102.166.18: icmp_seq=2 ttl=56 time=120.237 ms > > > 56 bytes from 203.102.166.18: icmp_seq=3 ttl=56 time=118.285 ms > > > 56 bytes from 203.102.166.18: icmp_seq=4 ttl=56 time=114.380 ms > > > ^C > > > --- www.ozemail.com.au ping statistics --- > > > 5 packets transmitted, 5 packets received, 0% packet loss > > > round-trip min/avg/max/stddev = 114.380/121.421/132.990/6.240 ms > > > > > > but sourcing the pings from the internal interface doesn't: > > > [root@erwin]/usr/local/etc: ping -S 192.168.100.10 www.ozemail.com.au > > > PING www.ozemail.com.au (203.102.166.18) from 192.168.100.10: 48 data > bytes > > > ^C > > > --- www.ozemail.com.au ping statistics --- > > > 12 packets transmitted, 0 packets received, 100% packet loss > > > > > > Both ppp and natd are running: > > > [root@erwin]/usr/local/etc: ps fax > > > PID TT STAT TIME COMMAND > > > <snip> > > > 704 ?? Is 0:00.00 natd -dynamic -interface tun0 > > > 737 ?? Ss 0:00.31 ppp -auto -alias demand > > > > > > Just for completeness - the pings (or traceroutes for that matter) don't > > > work from the LAN either. What could be wrong? > > > > Just a thought.. what does 'sysctl net.inet.ip.forwarding' say? > > It should be equal to 1. > > [root@erwin]/usr/local/etc: sysctl net.inet.ip.forwarding > net.inet.ip.forwarding: 1 > > cheers, > rob Since ppp has built in NAT support (enabled with the -nat flag), is there any special reason you using natd? If you want to use natd, you need to have ipfw running with a divert rule that sends the packets to natd to process. This is automatically done for you if you've got natd_enable="YES", firewall_enable="YES" and firewall_type="OPEN" or "CLIENT" or "SIMPLE" in /etc/rc.conf. What does 'ipfw show' show? -- Matt Emmerton To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?00c801c291b5$747862f0$1200a8c0>