From owner-freebsd-questions Tue Mar 5 18:48: 6 2002 Delivered-To: freebsd-questions@freebsd.org Received: from star-one.liberator.dyndns.org (dsl-64-34-177-185.telocity.com [64.34.177.185]) by hub.freebsd.org (Postfix) with ESMTP id 8ACC437B986 for ; Tue, 5 Mar 2002 18:41:55 -0800 (PST) Received: (from dholmes@localhost) by star-one.liberator.dyndns.org (8.9.3/8.9.2) id SAA04506; Tue, 5 Mar 2002 18:42:16 -0800 (PST) (envelope-from dholmes) From: Dennis Holmes Message-Id: <200203060242.SAA04506@star-one.liberator.dyndns.org> Subject: Re: NAT, route, & firewall In-Reply-To: from BURNT MELTING MONKEY FACE at "Mar 5, 2002 5: 8:41 pm" To: failure@speakeasy.net (BURNT MELTING MONKEY FACE) Date: Tue, 5 Mar 2002 18:42:16 -0800 (PST) Cc: freebsd-questions@FreeBSD.ORG Reply-To: dholmes@rahul.net X-Mailer: ELM [version 2.4ME+ PL43 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Look what BURNT MELTING MONKEY FACE wrote: > hello, > > i've just added a new host (freebsd 4.3) to our NAT'd LAN and i'm having some > troubles adding the route. > > we have a ENI Speedstream 5871 router connected to a SOHO Watchguard firewall. > we've got the 4 boxes connected to the firewall, which is the gateway also at > 192.168.254.254. not sure what the LAN IP of the router is though. i do know > the WAN IP... > > after i run... (which i'm sure is wrong) > > $ route add -net 192.168.254.0 -host 192.168.254.254 -netmask 255.255.255.0 > > in the routing tables i see... > > Dest Gateway Flags > ---- ------- ----- > 192.168.254 192.168.254.254 UGSc > > please tell me what i'm doing wrong. 'man route' is imprinted in my skull but > i'm obviously retarded. if i've left anything out please let me know. > > thanks. > > -jared The route for the local subnet looks like your above result and is normally added automatically when the interface is configured. It sounds like you're trying to add the new host's default route so it can communicate beyond the local subnet; if not, please excuse me and explain your environment in more detail is possible. Assuming that the address assigned for the new host is 192.168.254.x, you probably want the following if manually configuring while running. Substitute "ed0" with the appropriate name of your NIC. $ ifconfig ed0 inet 192.168.254.x netmask 255.255.255.0 $ route add -net default 192.168.254.254 Or automatically in /etc/rc.conf: ifconfig_ed0="inet 192.168.254.x netmask 255.255.255.0" defaultrouter="192.168.254.254" +----------------+-------------------+------------------------------------+ | Dennis Holmes | dholmes@rahul.net | "We demand rigidly defined | | San Jose, CA +-------------------+ areas of doubt and uncertainty!" | +------=>{ Meanwhile, as Ford said: "Where are my potato chips?" }<=------+ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message