Date: Tue, 3 Oct 2000 19:28:40 -0400 From: "Eli Stair" <estair@computer-exchange.com> To: <freebsd-questions@freebsd.org> Subject: Re: NATD,IPFW error:"Failed to write packet back:Permission Message-ID: <200010031928.AA15859904@computer-exchange.com>
next in thread | raw e-mail | index | archive | help
....Continuing the saga..... >Your lo0 interface is not configured, make sure to include `lo0' in the >`network_interfaces' list in /etc/rc.conf, or set its value to `auto' >to make it automatically filled with the output of `ifconfig -l'. You were entirely correct about this, it was the most obvious thing, but neglected to check it because, of course, it was so obvious :) Thanks. >As for the second problem (you can't reach the world from internal >machines), >try running natd manually with `natd -v -n xl1', and send me some >output >from it, when you, say, ping outside host from any of your local >machines. Ok, output is this: SHRIKE# natd -v -n xl1 natd[262]: Aliasing to 24.216.250.161, mtu 1500 bytes When I ping, try to access web pages, etc. through the BSDgateway, I get "host not found" on the internal client machine. I do have the BSD box (192.168.0.1) set as the gateway on these. I'm stumped! I'm getting no errors (on the BSD gateway/FW box) on boot or during use, everything checks out ok and *should* be working. Any ideas on what I should try? Thanks a million (if I had it, it'd be yours ;) for your input and time, it's giving me hope at least where I don't have experience. /eli > > In response to Ruslan Ermilov, here are some local settings from my > machine. Also Ruslan, I do have GATEWAY_ENABLE set to yes, and the > clients do have the BSD box set as gateway (192.168.0.1). Thanks > for your help :) > > /eli > > ######################################## > > Output from ipfw list: > 00050 divert 8668 ip from any to any via xl1 > 00100 allow ip from any to any via lo0 > 00200 deny ip from any to 127.0.0.0/8 > 65000 allow ip from any to any > 65535 allow ip from any to any > > > output of ifconfig -a inet: > > xl0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500 > inet 192.168.0.1 netmask 0xffffff00 broadcast 192.168.0.255 > xl1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500 > inet 24.216.250.161 netmask 0xffffff80 broadcast 255.255.255.255 > lo0: flags=8008<LOOPBACK,MULTICAST> mtu 16384 > gif0: flags=8010<POINTOPOINT,MULTICAST> mtu 1280 > gif1: flags=8010<POINTOPOINT,MULTICAST> mtu 1280 > gif2: flags=8010<POINTOPOINT,MULTICAST> mtu 1280 > gif3: flags=8010<POINTOPOINT,MULTICAST> mtu 1280 > faith0: flags=8000<MULTICAST> mtu 1500 > > Output from netstat -rn -finet > Routing tables > > Internet: > Destination Gateway Flags Netif Expire > default 24.216.250.129 UGSc 2 4 xl1 > 24.216.250.128/25 link#2 UC 0 0 xl1 => > 24.216.250.129 0:20:40:66:77:6d UHLW 2 0 xl1 1145 > 192.168 link#1 UC To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200010031928.AA15859904>