Date: Mon, 12 Mar 2001 19:33:30 -0500 From: Dany Cayouette <danyc@playground.net> To: Tymanthius Rune Speak <tymanthius@usa.net>, freebsd-questions@freebsd.org Subject: Re: More NATD/IPFW woes . . . Message-ID: <3AAD6ADA.891CF369@playground.net> References: <20010313000639.4798.qmail@nwcst284.netaddress.usa.net> <3AAD693C.C11E6A3E@playground.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Oops! it send too fast. Couple of other things I could suggest. Keep the firewall open initially to debug your connectivity problem. In my /etc/rc.conf I have: firewall_enable="YES" firewall_type="OPEN" natd_enable="YES" natd_interface="ep0" (This is the 'public' interface aka facing your provider. In your case, ed0 or ed1) From a host on your private/home LAN, you should be able to ping both interface on the FreeBSD box. This would indicate the routing on the FBSD box is OK. In my kernel, I have options IPFIREWALL options IPDIVERT defined. Again, hope this helps Dany Dany Cayouette wrote: > Not sure how much experience you have with FreeBSD. I got this setup working > at home. Which version of FreeBSD are you running? Is your dual-NIC box set > to forward IP packets? Is other words what is the value of the command > > sysctl net.inet.ip.forwarding > > This kernel variable should be set to 1 > > sysctl net.inet.ip.forwarding=1 > > To make this change happen at boot up, I think you need > gateway_enable="YES" in your /etc/rc.conf file. > > Hope this helps > Dany > > Tymanthius Rune Speak wrote: > > > Ok, I'm REALLY frustrated now. > > > > This is what I found out over the weekend: > > > > Take the GENERIC kernel config file. > > cp GENERIC 2NicKern > > edit 2NicKern so that ed0 line has settings for MY ed0. > > Add ed1 line that matches my ed1. > > > > config 2NicKern > > make depend -j4 > > make -j4 > > make install -j4 > > > > Can ping intra- & inter-nets from bsd box. > > intranet can not ping internet. > > > > make clean > > > > edit 2NicKern to add > > options IPFIREWALL > > options IPDIVERT > > > > config 2NicKern > > make depend -j4 > > make -j4 > > make install -j4 > > > > Now can not talk to internet, intra still works fine. Even if running fully > > open ipfw rules > > > > comment out > > options IPFIREWALL > > > > config 2NicKern > > make depend -j4 > > make -j4 > > make install -j4 > > > > Same as before. > > > > edit out > > options IPDIVERT > > put back in > > options IPFIREWALL > > > > config 2NicKern > > make depend -j4 > > make -j4 > > make install -j4 > > > > Same problem. > > > > I'm about ready to scream . . . > > > > If I at least knew why the internet was going away, I'd have a place to > > start. > > > > > > ____________________________________________________________________ > > Get free email and a permanent address at http://www.netaddress.com/?N=1 > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-questions" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3AAD6ADA.891CF369>