From owner-freebsd-questions Wed Oct 23 18:28:36 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BEACB37B401 for ; Wed, 23 Oct 2002 18:28:34 -0700 (PDT) Received: from skywalker.rogness.net (skywalker.rogness.net [64.251.173.102]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1593543E4A for ; Wed, 23 Oct 2002 18:28:34 -0700 (PDT) (envelope-from nick@rogness.net) Received: from skywalker.rogness.net (localhost [127.0.0.1]) by skywalker.rogness.net (8.12.5/8.12.5) with ESMTP id g9O1Vw0H034700; Wed, 23 Oct 2002 19:31:59 -0600 (MDT) (envelope-from nick@rogness.net) Received: from localhost (nick@localhost) by skywalker.rogness.net (8.12.5/8.12.5/Submit) with ESMTP id g9O1Vw1A034697; Wed, 23 Oct 2002 19:31:58 -0600 (MDT) X-Authentication-Warning: skywalker.rogness.net: nick owned process doing -bs Date: Wed, 23 Oct 2002 19:31:57 -0600 (MDT) From: Nick Rogness To: Robert Hall Cc: freebsd-questions@FreeBSD.ORG Subject: Re: NAT gateway In-Reply-To: <5.1.1.6.1.20021023164419.00a72ae8@pop.starpower.net> Message-ID: <20021023192847.L34548-100000@skywalker.rogness.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Wed, 23 Oct 2002, Robert Hall wrote: > I'm setting up a FreeBSD 4.4 box again after a system crash. It's > intended to be a gateway. I can communicate with the other hosts on my > network, but I can't communicate outside the network. netstat -r shows > that I have the default route; ppp is connecting to my ISP and getting > the dynamically assigned address. But I can't ping or traceroute outside > my LAN. (They work fine internally.) I'm using NAT and I have the kernel > recompiled with IPFIREWALL and IPDIVERT. In rc.conf, natd and the > firewall are enabled. > > Does anyone have any suggestions? Is gateway_enable="YES in /etc/rc.conf? If so, please provide output from the following commands to help us troubleshoot your problem: # ifconfig -a # netstat -rn # ps -aux |grep nat # ipfw -a l # sysctl net.inet.ip.forwarding Nick Rogness - "Wouldn't it be great if we could answer people with a kick to the crotch?" -maddox@xmission.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message