From owner-freebsd-questions Tue Apr 23 6:57:14 2002 Delivered-To: freebsd-questions@freebsd.org Received: from dns.perimeter.co.za (dns.perimeter.co.za [196.25.164.254]) by hub.freebsd.org (Postfix) with ESMTP id E375637B400 for ; Tue, 23 Apr 2002 06:57:05 -0700 (PDT) Received: from PATRICK (loopback.mipjhb [209.212.102.245] (may be forged)) by dns.perimeter.co.za (8.11.1/8.11.1) with SMTP id g3NDv3L01458 for ; Tue, 23 Apr 2002 15:57:03 +0200 (SAST) (envelope-from bsd@perimeter.co.za) Message-ID: <007601c1eace$76182160$b50d030a@PATRICK> From: "Patrick O'Reilly" To: "FreeBSD Question List" References: <000501c1eac7$bc094480$b50d030a@PATRICK> Subject: Re: Unable to see LAN from gateway! Date: Tue, 23 Apr 2002 15:54:59 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4522.1200 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG ----- Original Message ----- From: "Patrick O'Reilly" > Good day all! > > I have the strangest problem - you won't believe this! > > I have a FreeBSD gateway/router and a branch office, configured like so: > > -------------- > PPP 192.168.255.6/30 | FreeBSD | LAN 192.168.3.1/24 > <<---------(hdlc0) Gateway (dc0)-------O > (<<--default gateway) | | > -------------- > > Now, the problem: I cannot ping/traceroute/connect from elsewhere to > any addresses on the 192.168.3.0/24 network, except 192.168.3.1 itself. > When I use traceroute from outside it is successful until 192.168.255.6, > then dies on the next hop. Correction on the above paragraph: On further testing I find I am able to traceroute from the outside to _SOME_ IPs on that LAN, but not all! Yet, all devices on the LAN can ping one-another OK. ?!? > If I log on to that gateway server itself, I can get anywhere out via > the PPP link, and I can ping 192.168.3.1, but nothing else on > 192.168.3.0/24 responds. > > Now, before you say "Plug the cable in!" :) - Users on the 192.168.3.0 > LAN are able to fetch their emails (from the head office mail server), > browse the web, etc. All of this traffic is traversing the gateway > quite merrily! ?????????????? > > The box has ipfw compiled into the kernel, but at present the > "rc.firewall" is running in "OPEN" mode. There is no NAT happening on > this box either. > > I must be missing something really obvious! > > Please hit me with the clue club. > curiouser and curiouser.... Regards, Patrick O'Reilly. ___ _ __ / _ )__ __ (_)_ __ ___ _/ /____ __ / __/ -_) _) / ~ ) -_), ,-/ -_) _) /_/ \__/_//_/_/~/_/\__/ \__/\__/_/ http://www.perimeter.co.za To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message