From owner-freebsd-questions@FreeBSD.ORG Thu Aug 3 18:36:35 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1AC3916A4DE for ; Thu, 3 Aug 2006 18:36:35 +0000 (UTC) (envelope-from admin@hdk5.com) Received: from mail.alohahosting.net (oahu.alohahosting.net [64.75.245.3]) by mx1.FreeBSD.org (Postfix) with ESMTP id 44FBE43D5F for ; Thu, 3 Aug 2006 18:36:32 +0000 (GMT) (envelope-from admin@hdk5.com) Received: from [192.168.1.35] by alohahosting.net (MDaemon.PRO.v8.0.2.R) with ESMTP id md50000262077.msg for ; Thu, 03 Aug 2006 08:49:00 -1000 Message-ID: <44D241FE.8050007@hdk5.com> Date: Thu, 03 Aug 2006 08:35:42 -1000 From: "admin@hdk5.com" User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.7.5) Gecko/20050108 X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-questions@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Authenticated-Sender: admin@hdk5.com X-Spam-Processed: mail.alohahosting.net, Thu, 03 Aug 2006 08:49:00 -1000 (not processed: message from valid local sender) X-MDRemoteIP: 66.180.149.18 X-Return-Path: admin@hdk5.com X-MDaemon-Deliver-To: freebsd-questions@freebsd.org X-MDAV-Processed: mail.alohahosting.net, Thu, 03 Aug 2006 08:49:02 -1000 Subject: Adding a FreeBSD Gateway on a DSL/ ATM circuit X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: admin@hdk5.com List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 03 Aug 2006 18:36:35 -0000 Aloha, My current problem is that I need to use a box as a FreeBSD 6.* gateway/firewall to the internet protecting an MS box that is in the office for doing a lot of photo work and uploading to servers for the company my wife works with. I was going to use a freesco (Linux)disk /firewall/gateway/router like I have on my single dsl 1.5/384 line. (This is currently what is protecting the MS box on this circuit.) However, the freesco setup does not work as a gateway on the leg of the ATM 5 IP circuit where we want to move the MS box to. I have tried to get it setup and have emailed the freesco lists and apparently no one has accomplished this. I have now built a FreeBSD box with 2 nics to use as a gateway/router/firewall between the single MS box and the internet. ed1 is on the 66.xxx.132.236 leg of the ATM. The defaultgateway on the internet side of the ATM is 66.xxx.132.233. The LAN side of the box ed0 is 192.168.1.1 to which the MS box is directed. ( I am using a test box 192.168.1.29 with FreeBSD 6* in place of the MS box at this point.) I can ping from the gateway box nic to the internet ok. I can ping from the Test box to the Lan side of the gateway box OK. I cant reach the internet thru the gateway. I have read probably 5 howtos from the FreeBSD hand book and elsewhere and none are exactly what I am doing. On FreeBSD Questions list recently there was a similar issue question posted but no body answered the post. It had to do with rc.conf Listing both Nics ifconfig_ed0 =66.xxx.132.236 netmask 255.255.255.248 #inet side ifconfig -ed1=192.168.1.1 netmask 255. 255.255.0 # lan side and gateway_enable="YES" which I have done. At this point I have not attempted a firewall PF or IPFW since I cant reach the internet thru the gateway and I want to understand what is not right with this setup first. If I use: route add -net 192.168.1 .29 192.168.1.1 I can no longer ping the Lan side of the gateway from the test box. Can you direct me to or give me a howto on setting this up so I can reach the internet if indeed its possible using a gateway/firewall on the leg of an ATM circuit? Any help would be appreciated. Thanks, Al Plant - Honolulu, Hawaii - Admin -- http://hawaiidakine.com -- http://hdk5.com -- -- http://internetohana.org -- http://freeBSDinfo.org -- + Supporting open source computing - FreeBSD 6.* +