From owner-freebsd-questions@FreeBSD.ORG Tue Oct 25 18:49:18 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A5C3216A420 for ; Tue, 25 Oct 2005 18:49:18 +0000 (GMT) (envelope-from ecrist@secure-computing.net) Received: from grog.secure-computing.net (grog.secure-computing.net [216.243.161.73]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2ECF843D70 for ; Tue, 25 Oct 2005 18:49:11 +0000 (GMT) (envelope-from ecrist@secure-computing.net) Received: from [192.168.1.50] (snipe.secure-computing.net [216.243.161.77]) (authenticated bits=0) by grog.secure-computing.net (8.13.1/8.13.1) with ESMTP id j9PInC5m034388 (version=TLSv1/SSLv3 cipher=RC4-SHA bits=128 verify=NOT); Tue, 25 Oct 2005 13:49:12 -0500 (CDT) (envelope-from ecrist@secure-computing.net) DomainKey-Signature: a=rsa-sha1; s=grog; d=secure-computing.net; c=nofws; q=dns; h=in-reply-to:references:mime-version:x-priority: content-type:message-id:cc:content-transfer-encoding:from:subject:date:to: x-mailer:x-spam-status:x-spam-checker-version; b=KpUYxDo5HBbWIll6rw7BNqD0xfGmTVlsn60/5KQdCHkd8c0KQ5fBp7LEP8wZSlNOk lN7YwGpj47aWhsDSNBfkQ== In-Reply-To: <003301c5d974$bb2adf70$0900a8c0@satellite> References: <003301c5d974$bb2adf70$0900a8c0@satellite> Mime-Version: 1.0 (Apple Message framework v734) X-Priority: 3 Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed Message-Id: <2CFD91C0-EA7D-4016-9BE2-796917D79FDC@secure-computing.net> Content-Transfer-Encoding: 7bit From: Eric F Crist Date: Tue, 25 Oct 2005 13:49:02 -0500 To: Dave X-Mailer: Apple Mail (2.734) X-Spam-Status: No, score=-4.9 required=4.0 tests=ALL_TRUSTED,AWL,BAYES_00 autolearn=ham version=3.1.0 X-Spam-Checker-Version: SpamAssassin 3.1.0 (2005-09-13) on grog.secure-computing.net Cc: freebsd-questions@freebsd.org Subject: Re: probably a simple routing or firewall question X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 25 Oct 2005 18:49:18 -0000 On Oct 25, 2005, at 9:59 AM, Dave wrote: > Hello, > Hello, > I've got a 5.4 box acting as a gateway/router and i have to set > up another for another network. This one will rely on a different > ip range, so i thought i'd hand it out while i'm doing the install > via my dhcp server, this part works but the box can't get to the > net to retrieve ports and so forth. I'm suspecting either a routing > or firewall issue. I'm using pf and am natting all traffic from > this new box to my external interface and passing all traffic, that > should be working. My network range is 10.8.0.0 and the range for > this new box is 10.10.0.0 i believe my problem is here, i'm not > sure where to fix it at, my gateway, this new box or both? I'd > rather not make to many modifications to this new machine save what > it needs to get going, ideally i'd like to hand it over, and have > it be dropped in and go. It needs to be that simple, the person > whose getting it has an impulsive habbit especially if something > doesn't work right out of the box. > Any help appreciated. > Thanks. > Dave. what is your netmask for the two boxes? Your default router needs to be on the same network as the machines that need to access it. _______________________________________________________ Eric F Crist "I am so smart, S.M.R.T!" Secure Computing Networks -Homer J Simpson