From owner-freebsd-questions Sun Oct 22 19: 7:28 2000 Delivered-To: freebsd-questions@freebsd.org Received: from sphere.coresolutions.com (unknown [202.181.200.194]) by hub.freebsd.org (Postfix) with ESMTP id 152F637B479 for ; Sun, 22 Oct 2000 19:07:23 -0700 (PDT) To: freebsd-questions@FreeBSD.ORG Subject: PPP NAT problems X-Mailer: Lotus Notes Release 5.0.4 June 8, 2000 Message-ID: From: marcus.lam@coresolutions.com Date: Mon, 23 Oct 2000 10:08:45 +0800 X-MIMETrack: Serialize by Router on Sphere/CoRe(Release 5.0.2c (Intl)|2 February 2000) at 23/10/2000 10:08:51 AM, Serialize complete at 23/10/2000 10:08:51 AM MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="=_alternative 000B855B48256981_=" Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG This is a multipart message in MIME format. --=_alternative 000B855B48256981_= Content-Type: text/plain; charset="us-ascii" Hello, I have a FreeBSD box set up with PPPoE set up and it's running fine. no problem. Now I want to share this connection with other NT boxes I have. For some reason I can ping from a NT box to the outside world but I cannot get real connection, let's say a HTTP connection, to the outside world. I am using ipfilter for NAT purposes. And the configuration is like this: ========================================================================== map tun0 192.168.0.0/16 -> 0.0.0.0/32 portmap tcp/udp 40000:65000 map tun0 192.168.0.0/16 -> 0.0.0.0/32 and for ipfilter I set this: ========================================== pass in quick proto tcp all keep state pass out quick proto tcp all keep state Now on a NT box (192.168.0.50) I can ping, say, www.oracle.com successfully but when I use a browser to access www.oracle.com it never returns. I noticed there is actually traffic thru the DSL modem but the result never reach back to the NT box, is it a routing issue or some other settings I forgot? here is a dump of the routing table on the FreeBSD box ================================================================ Destination Gateway Flags ... Netif Expire default 192.168.64.1 UGSc tun0 10 link#1 UC xl0 => 127.0.0.1 127.0.0.1 UH lo0 192.168 link#2 UC rl0 => 192.168.0.50 link#2 UHLW rl0 => 192.168.64.1 203.169.162.137 UH tun0 Thanks. -------------------------------------------------------------------- Marcus Lam (marcus.lam@coresolutions.com) --=_alternative 000B855B48256981_= Content-Type: text/html; charset="us-ascii"
Hello,

I have a FreeBSD box set up with PPPoE set up and it's running fine. no problem.

Now I want to share this connection with other NT boxes I have. For some reason I can ping from a NT box to the outside world but I cannot get real connection, let's say a HTTP connection, to the outside world.

I am using ipfilter for NAT purposes.  And the configuration is like this:
==========================================================================
map tun0 192.168.0.0/16 -> 0.0.0.0/32 portmap tcp/udp 40000:65000
map tun0 192.168.0.0/16 -> 0.0.0.0/32

and for ipfilter I set this:
==========================================
pass in quick proto tcp all keep state
pass out quick proto tcp all keep state


Now on a NT box (192.168.0.50) I can ping, say, www.oracle.com successfully but when I use a browser to access www.oracle.com it never returns. I noticed there is actually traffic thru the DSL modem but the result never reach back to the NT box, is it a routing issue or some other settings I forgot?  

here is a dump of the routing table on the FreeBSD box
================================================================
Destination       Gateway           Flags    ...   Netif  Expire
default           192.168.64.1      UGSc           tun0
10                link#1            UC             xl0    =>
127.0.0.1         127.0.0.1         UH             lo0
192.168           link#2            UC             rl0    =>
192.168.0.50      link#2            UHLW           rl0    =>
192.168.64.1      203.169.162.137   UH             tun0


Thanks.

--------------------------------------------------------------------
Marcus Lam (marcus.lam@coresolutions.com)
 --=_alternative 000B855B48256981_=-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message