From owner-freebsd-questions Thu Jul 22 19: 3:17 1999 Delivered-To: freebsd-questions@freebsd.org Received: from topsecret.net (gill.apk.net [207.54.148.62]) by hub.freebsd.org (Postfix) with SMTP id 52A27153AF for ; Thu, 22 Jul 1999 19:03:09 -0700 (PDT) (envelope-from gill@topsecret.net) Received: from stumpy by topsecret.net with SMTP (MDaemon.v2.7.SP5.R) for ; Thu, 22 Jul 1999 22:02:14 -0400 From: "James Gill" To: "freebsd-questions@FreeBSD. ORG" Subject: my gateway is a gate, but not a way! Date: Thu, 22 Jul 1999 22:03:03 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Importance: Normal X-MDaemon-Deliver-To: freebsd-questions@FreeBSD.ORG X-Return-Path: gill@topsecret.net Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG and now for today's question ;) (i have looked in the handbook, the freebsddiary, and _the complete..._ by Greg Lehey. It seems like a simple enough question, i'm just stuck) Here is a diagram of the network as it is currently implemented (wrapped for readability): +==========+==========\ .130 .131 .129 + .2 _____ / Internet<==/_.1_/====+======== .33 .130 and .131 are on the internal half of the 255.255.255.192 subnet. The gateway, which has two NICs and .129 on the internal one and .2 on the external one *should* route packets. .1 is an ISDN routing device (no ppp, dialup headaches, yay!) and .33 is a machine that is (currently) on the external side of the gateway. from .130 and .131 I can ping each other, .129 *and* .2 addresses, but *not* the .33 or .1 addresses. from the gateway machine I can ping all addresses on the network and internet. I'm really not sure where to look first to make .33 and the internet accessable from the internal machines. Eventually, the gateway machine will be a firewall and NAT (and .33 will go to .133) but currently it is installed with a minimal config, the source distribution, make, and bind (bind is not yet configured). So let's start with what is in my /etc/rc.conf file on the gateway: # -- sysinstall generated deltas -- # ntpdate_flags="ncar.ucar.edu" saver="star" blanktime="300" gateway_enable="YES" ntpdate_enable="YES" network_interfaces="ed0 ed1 lo0" ifconfig_ed0="inet 10.101.101.2 netmask 255.255.255.192" ifconfig_ed1="inet 10.101.101.129 netmask 255.255.255.192" defaultrouter="10.101.101.1" #defaultrouter="NO" hostname="panama.int.topsecret.net" releaseName="" #static_routes="route_int route_ext" #list of static routes #route_int="-net 10.101.101.0 10.101.101.2" #route_ext="-net 10.101.101.128 10.101.101.129" as you can see, i've tried a few things already and the gateway_enable="YES" *is* turned on. When I uncomment the last three lines I get errors in the myst that goes by as the system boots, but it's at some point after what shows up in /var/run/dmesg.boot and here's what ifconfig -a shows me: ed0: flags=8843 mtu 1500 inet 10.101.101.2 netmask 0xffffffc0 broadcast 10.101.101.63 ether 00:80:29:ef:61:71 ed1: flags=8843 mtu 1500 inet 10.101.101.129 netmask 0xffffffc0 broadcast 10.101.101.191 ether 00:80:29:ef:81:d1 lo0: flags=8049 mtu 16384 inet 127.0.0.1 netmask 0xff000000 and, while i'm at it, here's a snippet from from: http://www.ietf.org/rfc/rfc1878.txt that tells me that my subnetting isn't screwed up... Table 1-2 represents traditional subnetting of a Class C network address (which is identical to extended Class B subnets). Subnet Mask # of nets Net. Addr. Host Addr Range Brodcast Addr. Bits of Subnet hosts/subnet 255.255.255.192 4 nets N.N.N.0 N.N.N.1-62 N.N.N.63 2 bit Class C 62 N.N.N.64 N.N.N.65-126 N.N.N.127 10 bit Class B N.N.N.128 N.N.N.129-190 N.N.N.191 N.N.N.192 N.N.N.193-254 N.N.N.255 any suggestions? ===================================== James Gill * http://www.topsecret.net ===================================== To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message