From owner-freebsd-questions  Mon Nov 23 12:06:07 1998
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id MAA09829
          for freebsd-questions-outgoing; Mon, 23 Nov 1998 12:06:07 -0800 (PST)
          (envelope-from owner-freebsd-questions@FreeBSD.ORG)
Received: from java.dpcsys.com (java.dpcsys.com [206.16.184.7])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id MAA09821
          for <freebsd-questions@FreeBSD.ORG>; Mon, 23 Nov 1998 12:06:05 -0800 (PST)
          (envelope-from dan@dpcsys.com)
Received: from localhost (dan@localhost)
	by java.dpcsys.com (8.9.1a/8.9.1) with SMTP id MAA12995;
	Mon, 23 Nov 1998 12:07:03 -0800 (PST)
Date: Mon, 23 Nov 1998 12:07:03 -0800 (PST)
From: Dan Busarow <dan@dpcsys.com>
To: Paul Dekkers <psd@cgu.nl>
cc: FreeBSD Mailinglist <freebsd-questions@FreeBSD.ORG>
Subject: Re: natd: what's wrong?
In-Reply-To: <Pine.BSF.3.96.981123190257.6208A-100000@chippie.cgu>
Message-ID: <Pine.BSF.3.96.981123120443.27435K-100000@java.dpcsys.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Mon, 23 Nov 1998, Paul Dekkers wrote:
> I have a setup more or less like this:
>               _____
>   clients -- |ed1  |
> 192.168.5.x  |     |
>              |__xl0| -- internet (public address)
> 
> with the following ifconfig's on the server:
> xl0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
>         inet (public address) netmask 0xffffff00 broadcast XXX.XXX.XXX.255
>         inet 10.0.0.1 netmask 0xffffff00 broadcast 10.0.0.255

Do you need the net 10 address bound to the interface?  If not,
get rid of it.  I can imagine it causing some confusion for natd

> ed1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
>         inet 192.168.5.1 netmask 0xffffff00 broadcast 192.168.5.255
> 
> Now I have the following firewall:
> 00100 divert 8668 ip from 192.168.0.0/16 to any via (public address)
> 65535 allow ip from any to any
> 
> and natd running with:
> natd -a (public address)

I use natd -s -m -u -interface xl0

> But; it doesn't work?! What's wrong?

Do you have IP forwarding enabled in rc.conf?  What firewall type
do you have in rc.conf?

Dan
-- 
 Dan Busarow                                                  949 443 4172
 Dana Point Communications, Inc.                            dan@dpcsys.com
 Dana Point, California  83 09 EF 59 E0 11 89 B4   8D 09 DB FD E1 DD 0C 82


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message