Skip site navigation (1)Skip section navigation (2)
Date:      Sun, 4 Feb 2001 21:31:07 -0700
From:      John Reynolds <jjreynold@home.com>
To:        vicky@vic.ky
Subject:   Re: I need more help .. ;)
Message-ID:  <14974.11403.104855.223932@whale.home-net>
In-Reply-To: <20010205042013.2283.cpmta@c001.snv.cp.net>
References:  <20010205042013.2283.cpmta@c001.snv.cp.net>

next in thread | previous in thread | raw e-mail | index | archive | help

[format recovered -- see http://www.lemis.com/email.html]

[ On , February 4, vicky@vic.ky wrote: ]
>
> dear sirs, I have two LAN cards here.. one has Internet IPs, one for Intranet
> IPs.. this is the detail of the example:
> 
> xl0 (internet) has: 202.155.19.193 - 255.255.255.240
> the router has: 202.155.19.194 (I set this as main gateway)
> xl1 (intranet) has: 192.168.1.3 - 255.255.255.0
> 
> from my office client, which are using Windows98, I set the gateway as
> 192.168.1.3 NOT as 202.155.19.193 .. is it correct?.. coz the problem now
> is.. I cannot telnet / ssh / ping / ftp to outside world from the client
> directly.. if I wish to access the internet from client.. I need to go to the
> server 1st.. how come?.. what's the best sollutions for this?..

First off, you need to send questions like this to questions@freebsd.org not
the documentation list. Secondly, you need to run natd on your main box as well
as make it a gateway. I have the same setup you do. The following snippets in
your /etc/rc.conf will help:

gateway_enable="YES"            # Set to YES if this host will be a gateway.
natd_program="/sbin/natd"       # path to natd, if you want a different one.
natd_enable="YES"                # Enable natd (if firewall_enable == YES).
natd_interface="fxp0"           # Public interface or IPaddress to use.

Just change 'fxp0' to 'xl0' in your case. This should make things "transparent"
from the Win98 client as long as you set its "gateway" to the 192.168.1.3
address. 

Named, firewalling and/or tcpwrappers, and other security issues need to be
addressed as well, but this will get you going.

-- 
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
John Reynolds         Chandler Capabilities Engineering, CDS, Intel Corporation
jreynold@sedona.ch.intel.com  My opinions are mine, not Intel's. Running
jjreynold@home.com        FreeBSD 4.2-STABLE. FreeBSD: The Power to Serve.
http://www.reynoldsnet.org/  Come join us!!! @ http://www.FreeBSD.org/
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-doc" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?14974.11403.104855.223932>