Date: Sat, 31 Oct 1998 23:06:16 +0900 From: john cooper <john@isi.co.jp> To: freebsd-hackers@FreeBSD.ORG, freebsd-questions@FreeBSD.ORG Cc: john@isi.co.jp, tfujii@isi.co.jp Subject: Request help with packet forwarding problem [2.2.7].. Message-ID: <98Oct31.231201jst.21889@ns.isi.co.jp>
next in thread | raw e-mail | index | archive | help
Hi,
I'm trying to get a system configured as a gateway. The
first step [which I thought would be simple] was to simply
forward packets between interfaces:
-------
| | default gateway: 203.168.62.35
| A |
| |
-------
| 203.168.62.58 (ed1)
|
| 203.168.62.35 (ed0)
-------
| | default gateway: ISP router
| FW | net.inet.ip.forwarding: 1
| |
-------
| 202.214.62.40 (vx0)
|
-----|-----------------------------> ISP router + DNS server
|
| 202.214.62.62
-------
| | default gateway: ISP router
| B | static route: 202.214.62.40 for net 203.168.62.0
| |
-------
Using netstat and tcpdump I discovered the following. If I ping
machine B from A, I can see the ICMP packets make this journey:
ICMP request: A --> FW --> B
ICMP reply: B --> FW --> land of no return
If I ping machine A from B, I get this:
ICMP request: B --> FW --> ISP router
I seems that FW will only forward packets in one direction.
However in the first case it appears the ICMP reply packets
are silently dropped [netstat does not report dropped packets].
In the second case, FW is actively trying to forward the packets
to the default gateway.
I'm at a loss to explain why this is occuring. I've enabled
packet forwarding in FW's kernel. Is something else required
to get packets forwarded between network interfaces on the same
machine???
Incidentally, IPFW is not built into machine FW's kernel.
Any suggestions would be most appreciated.
Thanks,
-john
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?98Oct31.231201jst.21889>