From owner-freebsd-net Fri Jan 5 17:54:10 2001 From owner-freebsd-net@FreeBSD.ORG Fri Jan 5 17:54:08 2001 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from rapidnet.com (rapidnet.com [205.164.216.1]) by hub.freebsd.org (Postfix) with ESMTP id 0933A37B400 for ; Fri, 5 Jan 2001 17:54:08 -0800 (PST) Received: from localhost (nick@localhost) by rapidnet.com (8.9.3/8.9.3) with ESMTP id SAA26403; Fri, 5 Jan 2001 18:53:58 -0700 (MST) Date: Fri, 5 Jan 2001 18:53:58 -0700 (MST) From: Nick Rogness To: Sean Cc: freebsd-net@freebsd.org Subject: Re: Problem with Multihomed Machine In-Reply-To: <3A567289.DBD37F7@home.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 5 Jan 2001, Sean wrote: > > > > Is gateway_enable turned on ? Is firewalling turned on? If > > so, what do your rules look like? Is natd enabled? > > In /etc/rc.conf I have gateway_enable="YES" and natd_enable="YES". For > the firewalling, I recompiled the kernel with the following options: > > options IPFIREWALL > options IPFIREWALL_VERBOSE > options IPFIREWALL_VERBOSE_LIMIT=10 > options IPFIREWALL_FORWARD > options IPFIREWALL_DEFAULT_TO_ACCEPT > options IPDIVERT > > from "ipfw list", I have the following rules in place > 00100 divert 8668 ip from any to any via rl0 > 00100 allow ip from any to any via lo0 > 00200 deny ip from any to 127.0.0.0/8 > 65000 allow ip from any to any > 65535 allow ip from any to any > > I tried resetting the internal network card's IP address to 10.0.0.3, > per another suggestion, but, that didn't have any effect. > > In my natd configuration file, i have: > > unregistered_only > log yes > use_sockets yes > same_ports yes > What about the alias_address or interface option? > > Can you ping the inside interface on your FreeBSD machine from your Win2K box? What does tcpdump show? Change your firewall rule 65000 to "log" and look at the firewall logs. Nick Rogness - Drive defensively. Buy a tank. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message