Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 9 Nov 2001 09:20:12 -0700
From:      Randy Smith <randys@amigo.net>
To:        freebsd-isp@freebsd.org
Subject:   Router questions
Message-ID:  <200111091622.fA9GMr114063@smtp1.amigo.net>
next in thread | raw e-mail | index | archive | help 
Hi all,

I have a couple of FreeBSD router questions.
1) Is there a utility that configures routed and ipfw using Cisco's command 
set? I couldn't find one in the ports collection so I thought I'd ask here.

2) I have a FreeBSD 4.4-R machine that want to configure as a router to do 
traffic shaping and transparent proxy. I think I have the router setup as per 
the documentation but I cannot ping across the box.

Here's my setup:
{net} <---> [gw1] <---> [fbsd] <---> [gw2] <---> {Lan}
* gw1 has address 192.168.69.49/255.255.255.252
* fbsd has addresses fxp0=192.168.69.50/255.255.255.252 and 
fxp1=192.168.69.53/255.255.255.252
* gw2 has address 192.168.69.54/255.255.255.252
(The gw* devices have other addresses on other interfaces that are on other 
networks that do not enter into this discussion.)

fbsd can ping gw1 and out to the net and gw2 and into the lan.
The problem is that gw2 can't ping gw1 and vis versa but the can each ping 
the fbsd interface on their network. i.e. gw2 can ping fbsd:fxp1 and gw1 can 
ping fbsd:fxp0.

In /etc/rc.conf I have:
gateway_enable="YES"
router_enable="YES"
firewall_enable="YES"
firewall_type="OPEN" # For testing
defaultrouter="192.168.69.49"
ifconfig_fxp0="inet 192.168.1.50  netmask 255.255.255.252"
ifconfig_fxp1="inet 192.168.1.53  netmask 255.255.255.252"

gateway_enable sets the sysctl variable net.inet.ip.forwarding which should 
turn on ip forwarding between interfaces. For simplicity, I have no static 
routes defined. (As an aside is there any better documentation on static 
routes than what's in route(8)?)

What did I miss that is preventing me from getting across the fbsd router?

Thanks in advance.

-- 
Randy Smith
Amigo.Net Systems Administrator
1-719-589-6100 x 4185
http://www.amigo.net/

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200111091622.fA9GMr114063>