From owner-freebsd-doc  Sun Feb  4 20:31:25 2001
Delivered-To: freebsd-doc@freebsd.org
Received: from cx587235-a.chnd1.az.home.com (cx587235-a.chnd1.az.home.com [24.11.88.170])
	by hub.freebsd.org (Postfix) with ESMTP id EB09737B4EC
	for <doc@freebsd.org>; Sun,  4 Feb 2001 20:31:07 -0800 (PST)
Received: from whale.home-net (whale [192.168.1.2])
	by cx587235-a.chnd1.az.home.com (8.11.1/8.11.1) with ESMTP id f154V7696951;
	Sun, 4 Feb 2001 21:31:07 -0700 (MST)
	(envelope-from jjreynold@home.com)
Received: (from jjreynold@localhost)
	by whale.home-net (8.11.1/8.11.1) id f154V7q01325;
	Sun, 4 Feb 2001 21:31:07 -0700 (MST)
	(envelope-from jjreynold@home.com)
From: John Reynolds <jjreynold@home.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-ID: <14974.11403.104855.223932@whale.home-net>
Date: Sun, 4 Feb 2001 21:31:07 -0700
To: vicky@vic.ky
Cc: doc@freebsd.org
Subject: Re: I need more help .. ;)
In-Reply-To: <20010205042013.2283.cpmta@c001.snv.cp.net>
References: <20010205042013.2283.cpmta@c001.snv.cp.net>
X-Mailer: VM 6.88 under Emacs 20.7.1
Cc: 
Sender: owner-freebsd-doc@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org


[format recovered -- see http://www.lemis.com/email.html]

[ On , February 4, vicky@vic.ky wrote: ]
>
> dear sirs, I have two LAN cards here.. one has Internet IPs, one for Intranet
> IPs.. this is the detail of the example:
> 
> xl0 (internet) has: 202.155.19.193 - 255.255.255.240
> the router has: 202.155.19.194 (I set this as main gateway)
> xl1 (intranet) has: 192.168.1.3 - 255.255.255.0
> 
> from my office client, which are using Windows98, I set the gateway as
> 192.168.1.3 NOT as 202.155.19.193 .. is it correct?.. coz the problem now
> is.. I cannot telnet / ssh / ping / ftp to outside world from the client
> directly.. if I wish to access the internet from client.. I need to go to the
> server 1st.. how come?.. what's the best sollutions for this?..

First off, you need to send questions like this to questions@freebsd.org not
the documentation list. Secondly, you need to run natd on your main box as well
as make it a gateway. I have the same setup you do. The following snippets in
your /etc/rc.conf will help:

gateway_enable="YES"            # Set to YES if this host will be a gateway.
natd_program="/sbin/natd"       # path to natd, if you want a different one.
natd_enable="YES"                # Enable natd (if firewall_enable == YES).
natd_interface="fxp0"           # Public interface or IPaddress to use.

Just change 'fxp0' to 'xl0' in your case. This should make things "transparent"
from the Win98 client as long as you set its "gateway" to the 192.168.1.3
address. 

Named, firewalling and/or tcpwrappers, and other security issues need to be
addressed as well, but this will get you going.

-- 
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
John Reynolds         Chandler Capabilities Engineering, CDS, Intel Corporation
jreynold@sedona.ch.intel.com  My opinions are mine, not Intel's. Running
jjreynold@home.com        FreeBSD 4.2-STABLE. FreeBSD: The Power to Serve.
http://www.reynoldsnet.org/  Come join us!!! @ http://www.FreeBSD.org/
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-doc" in the body of the message