Date: Sun, 25 Mar 2001 21:46:56 -0800 From: Robin Lo <asailcat@yahoo.com> To: freebsd-questions@FreeBSD.ORG Subject: Re: NAT questions, Please Help Message-ID: <5.0.2.1.0.20010325214544.00a47710@pop.mail.yahoo.com> In-Reply-To: <3ABE153E.55B252CD@iowna.com> References: <5.0.2.1.0.20010324185729.00a486a0@pop.mail.yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Please read through the following messages. Any help would be much appreciated. Thanks!!!!! At 10:56 AM 3/25/01 -0500, you wrote: >Personally, I generally use the kernel ipfilter interface that installs >with FreeBSD and I'm not terribly familiar with the ipnat system. > >-Bill > >Robin Lo wrote: > > > > Thanks Bill for the quick response. Your reply solves the problem with the > > messages being displayed, however I am still unable to get to the internet > > with my internal boxes. I can't surf the internet when I configure an > > internal client with eg 10.0.0.1/8 and with a subnet mask of > > 255.0.0.0. Please take a look at my conf files. > > > > ***Attached is my rc.conf and ipnat.rules files. Please take a look and > > let me know what you find. Thanks for your help. Robin > > > > Port 138 is netbios stuff. Typical Micros~1 broadcast traffic. The > > solution is to remove all the Windows-based machines from you network. > > Barring that, I'd program your NAT box with a firewall that rejects or > > drops those packets. Or you could just ignore it or program ipnat not to > > complain about it. It's probably just the Micros~1 machines making sure > > everyone else on the network knows they're there every 15 seconds or > > whatever the default interval is. I believe on some of the Micros~1 > > boxes you can turn of "lanmanager annoucements" or other such broadcast > > options to reduce this traffic. > > > > -Bill > > > > Robin Lo wrote: > > > > > > Hello, > > > > > > I have set up FreeBSD 4.2 to be used for NAT. I have 2 NIC cards > > > configured for the network. The internal network is configured > > > with--10.0.0.0/8, and the second NIC with it's ISP default settings. > > > The external NIC has been tested. I am able to ping to the outside > > > world. I support an internal network with an NT2000 Server used for > > > DNS, DHCP, and Active Directory services supporting serveral Windows > > > /Pro/NT40/ and 98 clients. When running the NAT box i get > > > these messages that appear accross the screen. It occurs while > > > working in vi or any other programs. > > > > > > March 24 03:36:39 firewall /kernel: Connection attempt to UDP > > > 64.160.131.xx9:138 from 64.160.131.xx8:138 > > > > > > March 24 03:36:39 firewall /kernel: Connection attempt to UDP > > > 10.255.255.255:138 from 10.10.1.1:138 > > > > > > March 24 03:36:39 firewall /kernel: Connection attempt to UDP > > > 10.255.255.255:138 from 10.10.1.3:138 > > > > > > March 24 03:58:38 firewall last message repeated 2 times > > > > ------------------------------------------------------------------------ > > Name: rc.conf.new > > rc.conf.new Type: unspecified type (application/octet-stream) > > Encoding: base64 > > > > Name: ipnat.rules > > ipnat.rules Type: unspecified type (application/octet-stream) > > Encoding: base64 _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5.0.2.1.0.20010325214544.00a47710>