Date: Wed, 19 Mar 2008 21:06:56 -0700 From: Christopher Cowart <ccowart@rescomp.berkeley.edu> To: Robert Huff <roberthuff@rcn.com> Cc: questions@freebsd.org Subject: Re: (more) confusion configuring NAT Message-ID: <20080320040656.GN39509@hal.rescomp.berkeley.edu> In-Reply-To: <18401.41909.143191.499557@jerusalem.litteratus.org> References: <18401.29043.824662.173177@jerusalem.litteratus.org> <18401.30778.630307.932644@jerusalem.litteratus.org> <18401.31783.343088.197533@jerusalem.litteratus.org> <20080319205600.GJ39509@hal.rescomp.berkeley.edu> <18401.33813.132534.954227@jerusalem.litteratus.org> <20080319231859.GM39509@hal.rescomp.berkeley.edu> <18401.41909.143191.499557@jerusalem.litteratus.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--Zbynv6TNPa9FrOf6 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Robert Huff wrote: > Christopher Cowart writes: >> Do you have gateway_enable=3D"YES" in your /etc/rc.conf? >=20 > huff@>> grep gate /etc/rc.conf > gateway_enable=3D"YES" >=20 >> $ sysctl -a net.inet.ip.forwarding=20 >> net.inet.ip.forwarding: 1 >=20 > huff@>> sysctl -a net.inet.ip.forwarding > net.inet.ip.forwarding: 1 >=20 >=20 >> Is the interface mentioned in the nat config the interface with the >> public IP? >=20 > em0 connects to the cable modem. >=20 >> Try putting `$CMD count log ip from any to any' rules to see if traffic >> is matching where you expect it to; >=20 > Where do I find the results of this Typically /var/log/security. Assuming you have IPFIREWALL_VERBOSE in your kernel config. --=20 Chris Cowart Network Technical Lead Network & Infrastructure Services, RSSP-IT UC Berkeley --Zbynv6TNPa9FrOf6 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iQIVAwUBR+Hi4CPHEDszU3zYAQKH1A//YhqnABwz76NbagV5NgFDxEtMdXrrvHf2 Z763xdZXmpwOeyzsDue0pQ1XBVLs+SrXZcIBYeqd101gg+47plSlbMcdzlalA5Ie xMGBV+7JQetjcC2LbG8SxJYia2yNqZyIYnYn9Fipjc+CXNBLSezDHc29HdT1/q4M BSGN6sc5HKDoLNvtGzn/MwLRIFrB2Fm6ihxkdCoVqMj4DhCuQUD/HZOhNA19V/WF 9m8vZ4P7T0mHAUBBh9StKjsriFzwpazABVKDj2UZFQ5kpYFExHzGdlqi0T/KFIhR NqG2/+BKWtUdjcGnmdYq9rWaQeGUKVxw2qF74rjlKu0CEXCcxq0mGJI+9a02Oh1a y6kWu62OEczf/Eg/lN1Z31UC7+PELsY+S8Rs4Vdy9rbVgA2adyG48rLYJ9WQklD4 zpK0y6vGOEH8tf+S8Ws5br4yknZ4pnQQqIIAiGhBr3EUqKX1/C6HUjdaI3HMjAK2 mF7ELZhis7xBICv/TQALowCieBVMg1ayxZNP6POP62rGBL/WQvnsWWqZHzjZ9ywb BxqBgmNLHymuqNnfzQUZZr7B9T6bC04Or516Sl6Y+UFdqMoVFYrBhYvSxmG96USc ntDmRXgMbOY3IxES+6w3kZoRFxomC5oLkRH7sthGde/h0++cDqdpycLfw57mRFxz qnQzedCDXT8= =ziZI -----END PGP SIGNATURE----- --Zbynv6TNPa9FrOf6--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20080320040656.GN39509>