From owner-freebsd-questions@FreeBSD.ORG  Tue Aug  5 12:38:44 2003
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id A211837B404
	for <freebsd-questions@FreeBSD.org>;
	Tue,  5 Aug 2003 12:38:44 -0700 (PDT)
Received: from relay.webpartner.dk (relay.webpartner.dk [195.184.96.12])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 8C98843FBD
	for <freebsd-questions@FreeBSD.org>;
	Tue,  5 Aug 2003 12:38:43 -0700 (PDT)
	(envelope-from jvennervald@proventum.net)
Received: from proventum.net (unknown [213.150.63.92])
	by relay.webpartner.dk (Postfix) with ESMTP
	id 748CFCA105; Tue,  5 Aug 2003 21:38:41 +0200 (CEST)
Message-ID: <3F3007D0.1060908@proventum.net>
Date: Tue, 05 Aug 2003 21:38:56 +0200
From: Jacob Vennervald <jvennervald@proventum.net>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US;
	rv:1.4) Gecko/20030529
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Andrew Boothman <andrew@cream.org>
References: <3F2FC71A.8040104@proventum.net>
	<200308052026.31670.andrew@cream.org>
In-Reply-To: <200308052026.31670.andrew@cream.org>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
cc: freebsd-questions@FreeBSD.org
Subject: Re: NATD and PPP problem
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Aug 2003 19:38:45 -0000

Hi

Here is the ppp.conf file:
default:
        set log Phase tun command # you can add more detailed logging if 
you wish
        set ifaddr 10.0.0.1/0 10.0.0.2/0 0.0.0.0 0.0.0.0

webpartner:
        set device PPPoE:xl0
        set authname XXXXXXXX
        set authkey XXXXXXXX
        set dial
        set login
        add default HISADDR


Here's the complete rc.conf file:

# Setup PPPoE for internet connection
ppp_enable="YES"
ppp_mode="ddial"
ppp_nat="NO"   # if you want to enable nat for your local network, 
otherwise NO
ppp_profile="webpartner"

# Setup NAT on external interface
firewall_enable="YES"
firewall_type="open"
gateway_enable="YES"
natd_enable="YES"
natd_interface="tun0"

# Setup internal interface
ifconfig_fxp0="inet 10.0.0.1  netmask 255.255.255.0"

# Set the hostname of the server
hostname="myhost.mydomain.com"

# Extra network settings
inetd_enable="NO"
kern_securelevel_enable="NO"
nfs_reserved_port_only="YES"
sendmail_enable="NO"
sshd_enable="YES"

# Enable linux binaries
linux_enable="YES"

# Localization
font8x8="iso-8x8"
font8x14="iso-8x14"
font8x16="iso-8x16"
scrnmap="NO"
keymap="danish.iso"

# Enable mouse daemon
moused_enable="YES"

Andrew Boothman wrote:

>On Tuesday 05 August 2003 4:02 pm, Jacob Vennervald wrote:
>
>  
>
>>I have setup the pppoe connection which works perfectly and then I've
>>tried to setup the machine as a NAT Router by setting the following in
>>the rc.conf:
>>firewall_enable="YES"
>>firewall_type="open"
>>natd_enable="YES"
>>natd_interface="tun0"
>>But when I restart the machine it gives me the following error:
>>"Firewall rules loaded, starting divert daemons: natdnatd: tun0: cannot
>>get interface address"
>>    
>>
>
>Hmmm.... Strange.....
>
>I've got 4.8 doing what you want, except using an xl0 instead of a tun0 as the 
>natd_interface because I get an ethernet port on my cable modem.
>
>Do you have ifconfig_tun0 = "DHCP" or something simiar in your rc.conf, or 
>does pppoe set things up differently? How is pppoe configured to start in 
>your setup? Can we see a more complete rc.conf (you can remove any specific 
>addresses or other incriminating evidance ;)
>
>I can't say I have any experience with your problem - but hopefully we can 
>shed some light on it.
>
>Cheers.
>
>Andrew
>
>
>  
>