From owner-freebsd-questions@FreeBSD.ORG Fri Jul 2 14:43:43 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 242F516A4CE for ; Fri, 2 Jul 2004 14:43:43 +0000 (GMT) Received: from out2.smtp.messagingengine.com (out2.smtp.messagingengine.com [66.111.4.26]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8F1B443D45 for ; Fri, 2 Jul 2004 14:43:41 +0000 (GMT) (envelope-from nkinkade@fastmail.fm) X-Sasl-enc: QZipYFZZeEPLjnzemI2jIQ 1088779355 Received: from gentoo-npk.bmp.ub (unknown [206.27.244.136]) by www.fastmail.fm (Postfix) with ESMTP id 1D316C0E04B; Fri, 2 Jul 2004 10:42:34 -0400 (EDT) Received: from nkinkade by gentoo-npk.bmp.ub with local (Exim 4.21) id 1BgPDI-0003iL-2H; Fri, 02 Jul 2004 08:40:28 -0600 Date: Fri, 2 Jul 2004 08:40:28 -0600 From: Nathan Kinkade To: Tony Liew Message-ID: <20040702144028.GQ4185@gentoo-npk.bmp.ub> Mail-Followup-To: Tony Liew , freebsd-questions@FreeBSD.org References: <40E4D519.20605@pd.jaring.my> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="LZ92CUgs0ha736zO" Content-Disposition: inline In-Reply-To: <40E4D519.20605@pd.jaring.my> User-Agent: Mutt/1.5.6i Sender: cc: freebsd-questions@FreeBSD.org Subject: Re: Problem with gateway and ipfw in FreeBSD 5.2 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Nathan Kinkade List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 02 Jul 2004 14:43:43 -0000 --LZ92CUgs0ha736zO Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Jul 02, 2004 at 11:23:05AM +0800, Tony Liew wrote: > Hi, >=20 > Currently I am trying out FreeBSD 5.2. >=20 > SDSL modem > | > FreeBSD Router > | > Internal network >=20 > My problem, from FreeBSD I can ping outside and inside network. > from Internal network, I can ping internal interface and external=20 > interface of FreeBSD Router. But I cannot ping the modem IP address so=20 > goes public DNS server on the internet. >=20 > I have in my KERNEL: > options BRIDGE > options DIVERT > options IPFIREWALL > options IPFIREWALL_DEFAULT_TO_ACCEPT >=20 > rc.conf > gateway_enable=3D"YES" > defaultrouter=3D"" > firewall_enable=3D"YES" > firewall_type=3D"OPEN" > natd_interface=3D"" > natd_enable=3D"YES" > router_enable=3D"YES" >=20 > sysctl.conf >=20 > net.link.ether.bridge.enable=3D1 > net.link.ether.bridge.config=3Dexternal interface, internal interface > net.link.ether.bridge.ipfw=3D1 >=20 >=20 > client on the internal network cannot connect to the internet. Any=20 > suggestion? >=20 > Thanks a lot. >=20 > Regards, > Tony Liew Why do you have bridging enabled? Trying turning off bridging: net.link.ether.bridge.enable=3D0 And then make sure that you have the FW enabled: net.inet.ip.fw.enable=3D1 Nathan --=20 PGP Public Key: pgp.mit.edu:11371/pks/lookup?op=3Dget&search=3D0xD8527E49 --LZ92CUgs0ha736zO Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFA5XPbO0ZIEthSfkkRAqFSAJ0UPvPjoqlGL7yiWfB5jkYp1cMNWgCg3rm2 GQfp/A93Wjb1gwktf84icHg= =Tip+ -----END PGP SIGNATURE----- --LZ92CUgs0ha736zO--