From owner-freebsd-questions@FreeBSD.ORG Sat Jul 30 19:11:01 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3646F16A41F for ; Sat, 30 Jul 2005 19:11:01 +0000 (GMT) (envelope-from wash@wananchi.com) Received: from ns2.wananchi.com (ns2.wananchi.com [62.8.64.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5002943D46 for ; Sat, 30 Jul 2005 19:11:00 +0000 (GMT) (envelope-from wash@wananchi.com) Received: from wash by ns2.wananchi.com with local (Exim 4.51 #0 (FreeBSD 4.11-STABLE)) id 1DywjZ-000Fx9-RV by authid for ; Sat, 30 Jul 2005 22:10:57 +0300 Date: Sat, 30 Jul 2005 22:10:57 +0300 From: Odhiambo Washington To: freebsd-questions@freebsd.org Message-ID: <20050730191057.GA53366@ns2.wananchi.com> Mail-Followup-To: Odhiambo Washington , freebsd-questions@freebsd.org References: <20050730104152.GH17171@ns2.wananchi.com> <20050730132033.GA2911@Alex.lan> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20050730132033.GA2911@Alex.lan> X-Disclaimer: Any views expressed in this message, where not explicitly attributed otherwise, are mine alone!. X-Mailer: Mutt 1.5.9i (2005-03-13) X-Designation: Systems Administrator, Wananchi Online Ltd. X-Location: Nairobi, KE, East Africa. User-Agent: Mutt/1.5.9i Subject: Re: Problem with IPFilter/IPNAT X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 30 Jul 2005 19:11:01 -0000 * On 30/07/05 15:20 +0200, Alex de Kruijff wrote: > On Sat, Jul 30, 2005 at 01:41:52PM +0300, Odhiambo Washington wrote: > > I am using IPFilter and IPNat on several FreeBSD boxes. They are mostly > > configured the same. > > > > Each box has two interfaces, public and internal, and acts as a router > > to the LAN which is 'behind' it. The LAN machines use the FreeBSD as the > > gateway, as well as a DNS server. I run cache-only config. > > > > The problem I have is that when, for any reason, the public link goes > > down, the machines on the LAN timeout when communicating. > > It sound like there tying to lookup hostnames via DNS or something like > this. > > Are you able to ping them with there ip addresses? > Are you able to ping them with there host names? Ping by IP addresses works. However, I have not tried ping by hostname since I have not setup any DNS or host entries for the machines on the LAN. I did not think this is a "REQUIREMENTS" at all. Is it?? So is this a DNS problem that I can resolve by just using /etc/hosts entries, maybe? Does my ipnat rules look okay? -Wash http://www.netmeister.org/news/learn2quote.html -- +======================================================================+ |\ _,,,---,,_ | Odhiambo Washington Zzz /,`.-'`' -. ;-;;,_ | Wananchi Online Ltd. www.wananchi.com |,4- ) )-,_. ,\ ( `'-'| Tel: +254 20 313985-9 +254 20 313922 '---''(_/--' `-'\_) | GSM: +254 722 743223 +254 733 744121 +======================================================================+ It is said that the lonely eagle flies to the mountain peaks while the lowly ant crawls the ground, but cannot the soul of the ant soar as high as the eagle?