Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 8 May 2007 12:43:52 -0400 (EDT)
From:      Gardner Bell <gbell72@rogers.com>
To:        John Nielsen <lists@jnielsen.net>, freebsd-ipfw@freebsd.org
Cc:        Gardner Bell <gbell72@rogers.com>
Subject:   Re: IPFW and NATD problem
Message-ID:  <282919.6049.qm@web88007.mail.re2.yahoo.com>
In-Reply-To: <200705081221.46248.lists@jnielsen.net>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help

--- John Nielsen <lists@jnielsen.net> wrote:

> On Tuesday 08 May 2007 11:40:58 am Gardner Bell wrote:
> > Hi all,
> >
> > I've been following the IPFW section in the handbook and
> /etc/rc.firewall
> > to try and setup a gateway for my home LAN but I'm having a bit of
> trouble
> > getting access to the internet.  My network setup looks like so.
> >
> > 192.168.x.x                     bge1 - 192.168.x.x       bge0
> x.x.x.x
> >
>
--LAN------------Switch---------FreeBSD-------------------------------ISP
> >
> > Bge0 successfully receives an IP from my ISP's DHCP server and I
> can ping
> > the LAN without any issues.  When it comes to accessing the
> internet I get
> > a hostname lookup failure.
> >
> > Any help resolving this is greatly appreciated.
> 
> Do you have "gateway_enable=yes" in your /etc/rc.conf? (check the
> value of the 
> net.inet.ip.forwarding sysctl).

dan@mx1$ cat /etc/rc.conf | grep gateway
gateway_enable="YES"

dan@mx1$ sysctl -a | grep ip.for
net.inet.ip.forwarding: 1

> 
> What DNS server is your LAN machine trying to use? Can you ping it
> (or 
> anything else) by IP?

My LAN is presently using MY ISP's DNS server until I get a caching
name server configured on the gateway.  I can't ping the DNS server by
IP or hostname but I can ping everything else that is on my LAN by IP. 
Including the switch, the IP that is assigned to bge1 and all the IPs I
have assigned to the machines behind the switch.

> 
> JN
> 

Gardner




Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?282919.6049.qm>