From owner-freebsd-questions  Thu Mar 15  6:16: 2 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from rknebel.uplink.net (rknebel.uplink.net [209.173.88.243])
	by hub.freebsd.org (Postfix) with ESMTP id E10F037B718
	for <questions@freebsd.org>; Thu, 15 Mar 2001 06:15:57 -0800 (PST)
	(envelope-from rknebel@uplink.net)
Received: from [192.168.1.2] (mac.uplink.net [192.168.1.2])
	by rknebel.uplink.net (8.11.1/8.11.1) with ESMTP id f2FEEFD00451
	for <questions@freebsd.org>; Thu, 15 Mar 2001 09:14:16 -0500 (EST)
	(envelope-from rknebel@uplink.net)
Mime-Version: 1.0
X-Sender: rknebel@rknebel.uplink.net
Message-Id: <p05001900b6d67a64faf6@[192.168.1.2]>
Date: Thu, 15 Mar 2001 09:06:10 -0500
To: questions@freebsd.org
From: Rick Knebel <rknebel@uplink.net>
Subject: kernelppp and nat again
Content-Type: text/plain; charset="us-ascii" ; format="flowed"
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Hi,
I am trying to get natd working with kernel ppp on my home network.
I took everyone's suggestions and still when I boot up I cannot get 
out to the internet. I can ping my internal network though.

Here are the files and relevant entries in the rc.conf.

my etc/firewall

/sbin/ipfw -f flush
/sbin/ipfw add divert natd all from any to any via ppp0
/sbin/ipfw add pass all from any to any


firewall_enable="YES"            # Set to YES to enable firewall functionality
firewall_script="/etc/rc.firewall" # Which script to run to set up the firewall
firewall_type="open"            # Firewall type (see /etc/rc.firewall)
firewall_quiet="NO"             # Set to YES to suppress rule display
firewall_logging="NO"           # Set to YES to enable events logging
firewall_flags=""

natd_program="/sbin/natd"       # path to natd, if you want a different one.
natd_enable="YES"                # Enable natd (if firewall_enable == YES).
natd_interface="ppp0"           # Public interface or IPaddress to use.
natd_flags=""                   # Additional flags for natd.
ipfilter_enable="NO"            # Set to YES to enable ipfilter functionality



I also rebuilt my kernel with the IPFIREWALL and IPDIVERT options



On boot up i get a message something like this.


IP PACKET FILTERING FULLY Intitalized divert enabled Rule-based 
filtering disabled default to deny.


Also should i enable ipfilter in my rc.conf

Thanks
Alot

Rick
-- 
Rick Knebel
rknebel@uplink.net
http://members.tripod.com/~Rick_Knebel/

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message