From owner-freebsd-questions@FreeBSD.ORG Sun Feb 7 09:58:30 2010 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0AB2A106568B for ; Sun, 7 Feb 2010 09:58:30 +0000 (UTC) (envelope-from m.seaman@black-earth.co.uk) Received: from smtp.infracaninophile.co.uk (gate6.infracaninophile.co.uk [IPv6:2001:8b0:151:1::1]) by mx1.freebsd.org (Postfix) with ESMTP id 60FDD8FC16 for ; Sun, 7 Feb 2010 09:58:29 +0000 (UTC) Received: from seedling.black-earth.co.uk (seedling.black-earth.co.uk [81.187.76.163]) (authenticated bits=0) by smtp.infracaninophile.co.uk (8.14.4/8.14.4) with ESMTP id o179wNNN070762 (version=TLSv1/SSLv3 cipher=DHE-RSA-CAMELLIA256-SHA bits=256 verify=NO); Sun, 7 Feb 2010 09:58:23 GMT (envelope-from m.seaman@black-earth.co.uk) X-DKIM: Sendmail DKIM Filter v2.8.3 smtp.infracaninophile.co.uk o179wNNN070762 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=black-earth.co.uk; s=201001-black-earth; t=1265536704; bh=C5EDXqO/Axgpy8czOb/4ljT4bzryyX8UtoNn2UMC2zU=; h=Message-ID:Date:From:MIME-Version:To:CC:Subject:References: In-Reply-To:Content-Type:Cc:Content-Type:Date:From:In-Reply-To: Message-ID:Mime-Version:References:To; z=Message-ID:=20<4B6E8EB5.8000107@black-earth.co.uk>|Date:=20Sun,=2 007=20Feb=202010=2009:58:13=20+0000|From:=20Matthew=20Seaman=20|User-Agent:=20Mozilla/5.0=20(Macintosh=3 B=20U=3B=20Intel=20Mac=20OS=20X=2010.6=3B=20en-GB=3B=20rv:1.9.1.7) =20Gecko/20100111=20Thunderbird/3.0.1|MIME-Version:=201.0|To:=20Bi ll=20Tillman=20|CC:=20Mark=20,=20=0D=0A=20help=20help=20 |Subject:=20Re:=20Wireless=20Access=20Point|References:=20<855190. 9850.qm@web36501.mail.mud.yahoo.com>|In-Reply-To:=20<855190.9850.q m@web36501.mail.mud.yahoo.com>|X-Enigmail-Version:=201.0|Content-T ype:=20multipart/signed=3B=20micalg=3Dpgp-sha1=3B=0D=0A=20protocol =3D"application/pgp-signature"=3B=0D=0A=20boundary=3D"------------ enig24BC7D497DD34F5B6E3009C2"; b=iJMSOw9HX+NdjEoIuRngoF7ZiqppZVq/4EXlHQKofd9pdjKsJ4KE/G1FyPlBt/8ip b5Qf05XSVF0T8jw97t3nXsgyqeTQRSwL72XZ+H1UKIq1QvQKP8E0TxZxaxk3E7OKle JnGQI/B9ecJMhfbr4YF8S1yEfur7sr9q1jNpDAg0= Message-ID: <4B6E8EB5.8000107@black-earth.co.uk> Date: Sun, 07 Feb 2010 09:58:13 +0000 From: Matthew Seaman User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; en-GB; rv:1.9.1.7) Gecko/20100111 Thunderbird/3.0.1 MIME-Version: 1.0 To: Bill Tillman References: <855190.9850.qm@web36501.mail.mud.yahoo.com> In-Reply-To: <855190.9850.qm@web36501.mail.mud.yahoo.com> X-Enigmail-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="------------enig24BC7D497DD34F5B6E3009C2" X-Virus-Scanned: clamav-milter 0.95.3 at happy-idiot-talk.infracaninophile.co.uk X-Virus-Status: Clean X-Spam-Status: No, score=-1.8 required=5.0 tests=AWL,BAYES_00,DKIM_SIGNED, DKIM_VERIFIED,SPF_FAIL autolearn=no version=3.2.5 X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on happy-idiot-talk.infracaninophile.co.uk Cc: help help , Mark Subject: Re: Wireless Access Point X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 07 Feb 2010 09:58:30 -0000 This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig24BC7D497DD34F5B6E3009C2 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable On 06/02/2010 23:41, Bill Tillman wrote: > Yes, my dhcp server which is this same FreeBSD server with the > wireless NIC is pushing the gateway IP address 192.168.0.254 > =20 > This is my /etc/rc.conf file > =20 > hostname=3D"FreeBSD13.mydomain.com" > gateway_enable=3D"YES" > ifconfig_bge0=3D"DHCP" > inetd_enable=3D"YES" > nfs_client_enable=3D"YES" > nfs_server_enable=3D"YES" > rpcbind_enable=3D"YES" > sshd_enable=3D"YES" > wlans_ral0=3Dwlan0 > create_args_wlan0=3D"wlanmode hostap mode 11g" > ifconfig_wlan0=3D"inet 192.168.0.254 netmask 255.255.255.0 ssid freebsd= ap channel 11" > sendmail_enable=3D"NO" > natd_interface=3D"wlan0" > =20 > The wireless laptop is seeing the FreeBSD server and is connecting=20 > and getting an IP address. But I cannot get out to the Internet with > it. I really appreciate the advice gang. I know this thing is > probably simple and I just can't find the resolution. Hmmm... there's no indication there that you are running a DHCP server on that FreeBSD box. Still, it would be fairly obvious if DHCP wasn't working. The problem is that you're running natd on the wrong interface. natd should run on the upstream interface -- the one with the default route. The way you've got things configured, it's treating your wlan as the external world, and NAT'ing the internet. Hmmm... Seems your wired interface is similarly obtaining an IP from private addess space, so it in its turn must be being NATed somewhere upsteam in order to get Internet access. While double-NAT'ing your WLAN should work (most of the time, at least), it's a bit dodgy and could result in mysterious failures. You can avoid this, by configuring proxy servers on your FreeBSD machine -- this is a classic firewall design, by the way -- but that is quite a lot of work, and you have to set up proxies for all of the services your WLAN hosts need to access on the Internet. Cheers, Matthew --=20 Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard, Flat 3 Black Earth Consulting Ramsgate Kent, CT11 9PW Free and Open Source Solutions Tel: +44 (0)1843 580647 --------------enig24BC7D497DD34F5B6E3009C2 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.14 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAktujr4ACgkQ8Mjk52CukIwXFACeN4oWjHHgYdy0xreM55yrC+Wi QFkAn14kx4r8qX4qFW7q2cMNesznUhU+ =m+jR -----END PGP SIGNATURE----- --------------enig24BC7D497DD34F5B6E3009C2--