From owner-freebsd-questions Mon Feb 19 18:26:32 2001 Delivered-To: freebsd-questions@freebsd.org Received: from c007.snv.cp.net (c007-h000.c007.snv.cp.net [209.228.33.206]) by hub.freebsd.org (Postfix) with SMTP id 14A6737B401 for ; Mon, 19 Feb 2001 18:26:29 -0800 (PST) Received: (cpmta 16705 invoked from network); 19 Feb 2001 18:26:27 -0800 Received: from dsl-216-227-91-85.telocity.com (HELO zoso) (216.227.91.85) by smtp.telocity.com (209.228.33.206) with SMTP; 19 Feb 2001 18:26:27 -0800 X-Sent: 20 Feb 2001 02:26:27 GMT From: "Otter" To: "'Steve'" , "'Chuck Rider'" Cc: Subject: RE: Gateway woes.... Date: Mon, 19 Feb 2001 21:33:36 -0500 Message-ID: <002201c09ae5$878ae930$1401a8c0@zoso> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 In-Reply-To: Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG or just read the man page for natd, if that's all you're looking for. also, filtering can be done with the ipfw (my personal choice). -Otter > -----Original Message----- > From: owner-freebsd-questions@FreeBSD.ORG > [mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of Steve > Sent: Monday, February 19, 2001 9:00 PM > To: Chuck Rider > Cc: questions@FreeBSD.ORG > Subject: Re: Gateway woes.... > > > Check out www.mostgraveconcern.com/freebsd and > www.freebsddiary.org. Each > of these sites have nearly step-by-step instructions on how > to set up your > dual-homed network and ipfw. > > ____ _ > / ___|| |_ _____ _____ > \___ \| __/ _ \ \ / / _ \ > ___) | || __/\ V / __/ > |____/ \__\___| \_/ \___| > ========================= > steve@nwf-soccer.com > > On Mon, 19 Feb 2001, Chuck Rider wrote: > > > I am trying to set up a firewall using a FreeBSD machine. > The first step I > > am trying is a basic gateway and am not having much luck. > > > > I am running FreeBSD version 4.2 in a box with two Ethernet > cards. dc0 is > > connected to the DSL modem, xl0 is connected to my home > network hub. From > > the FreeBSD machine I can ping anything I want. On the > internet using names > > or ip addresses and on my home network using ip addresses. > From a machine > > on my home network I can ping either Ethernet address on > the gateway by ip > > address, but I cannot ping anything on the internet. I > assume I am not > > actually forwarding packets, but am at a loss as to what to > try next. Any > > help would be greatly appreciated. > > > > sysctl -a | grep forward yields: > > net.inet.ip.forwarding: 1 > > net.inet.ip.fastforwarding: 0 > > net.inet6.ip6.forwarding: 0 > > > > here is my rc.conf file > > # This file now contains just the overrides from > /etc/defaults/rc.conf > > # please make all changes to this file. > > > > # Enable network daemons for user convenience. > > # -- sysinstall generated deltas -- # > > network_interfaces="dc0 xl0 lo0" > > ifconfig_dc0="inet 64.167.104.195 netmask 255.255.255.248" > > ifconfig_xl0="inet 10.0.0.2 netmask 255.255.255.0" > > ifconfig_lo0="inet 127.0.0.1" > > defaultrouter="64.167.104.193" > > static_routes="" > > gateway_enable="YES" > > hostname="crweb.theriders.net" > > moused_port="/dev/psm0" > > moused_type="auto" > > moused_enable="YES" > > crweb# > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-questions" in the body of the message > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message