Date: Thu, 15 Apr 2004 15:09:01 +0000 From: "Drew Robertson" <the_brothel@hotmail.com> To: questions@freebsd.org Subject: FreeBSD Dial up server Message-ID: <BAY99-F38lVIsvr18ff00004cc5@hotmail.com>
next in thread | raw e-mail | index | archive | help
Hi all, I've been trying to set up an ISP like setup for a home lan. ie. have dial in client use cable modem to access the internet and other lan clients. I'm using freebsd 4.8 and have just changed from ipfw/natd to ipf/ipnat. I have the issue where clients dial in, authenticate, logon but can't access anything on the server or lan. I've gone right back to basics and added the sample server section from the ppp.conf.sample. server: enable chap chap80 chap81 pap passwdauth enable proxy set ifaddr 10.0.0.1 10.0.0.100-10.0.0.199 accept dns In ipnat.rules there is a map command used to map all the packets going out on the tun0 interface, but it's use looks to be for dial out isp connection. With packets coming in from a dial in client should i map packets back in instead, or both ways?? i have the ipnat.rules file as follows map tl0 192.168.1.0/24 -> 0/32 map tun0 192.168.1.0/24 -> 0/32 map tun0 0/32 <- 0/32 If so, will the last command allow packets being passed from the tun0 interface coming into the server to just pass through with it's assigned ip address from ppp.conf? I have included all the options in rc.conf from the handbook and it looks to be ok. gateway_enable="YES" hostname="SOMECOMPUTER.SOMEWHERE.COM" ifconfig_sis0="inet 192.168.1.1 netmask 255.255.255.0" ifconfig_tl0="DHCP" ifconfig_tun0= #defaultrouter="192.168.1.1" router_enable="NO" mrouted_enable="NO" #arpproxy_all="YES" local_startup="/usr/local/etc/rc.d /etc" inetd_enable="YES" kern_securelevel_enable="NO" linux_enable="YES" lpd_enable="YES" moused_enable="YES" moused_port="/dev/psm0" moused_type="auto" nfs_reserved_port_only="YES" usbd_enable="YES" ipfilter_enable="YES" ipmon_enable="YES" ipmon_flags="-Dsvn" ipnat_enable="YES" ipfilter_rules="/etc/ipf.rules" ipnat_rules="/etc/ipnat.rules" nfs_server_enable="YES" portmap_enable="YES" nfs_client_enable="YES" Thanks for the help. _________________________________________________________________ Get Extra Storage in 10MB, 25MB, 50MB and 100MB options now! Go to http://join.msn.com/?pgmarket=en-au&page=hotmail/es2
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?BAY99-F38lVIsvr18ff00004cc5>