Date: Tue, 21 Mar 2000 22:29:25 -0500 From: "Crist J. Clark" <cjc@cc942873-a.ewndsr1.nj.home.com> To: Laszlo Vagner <george@vagner.com> Cc: questions@FreeBSD.ORG Subject: Re: wierd problem with natd Message-ID: <20000321222925.B85043@cc942873-a.ewndsr1.nj.home.com> In-Reply-To: <00032114373100.05442@john.vagner.com>; from george@vagner.com on Tue, Mar 21, 2000 at 02:22:39PM -0700 References: <00032114373100.05442@john.vagner.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Mar 21, 2000 at 02:22:39PM -0700, Laszlo Vagner wrote:
> i have 2 network cards vr0 and ed1 installed with firewall enabled and using a
> rule that is open running natd -n ed1.
>
> 2 machines are 192.168.151.1 and .2 the vro interface is
> .0 and the ed1 interface is on outside net.
Ummm... Do you mean .140, .141, and .142 here?
> i can ping the internet from the .1 machine thru the gateway but not from
> the .2 machine, i tried pinging ip addresses inside and that works but not the
> outside interface on 1 machine only.
>
> i hope this is clear... the inside machines are win 98 and the gateway is set
> to the outside interface address.
OK, let me see if I can figure this out,
- .141, a machine on your private net, can ping machines on the
Internet.
- .142, the other private net machine, can _NOT_ ping the Internet.
- .142 CAN ping .140, .141.
OK, why do you think this is a problem with the NAT gateway? It
sounds like the problem is with .142. Is its default gateway, .140,
properly set? If so, do some tcpdump(1)s on your internal interface
while .142 pings and see what is up.
[snip output and config files that all looked good until...]
> $
> relevant /etc/defaults/rc.conf
>
>
> firewall_enable="YES" # Set to YES to enable firewall functionality
> firewall_script="/etc/firewall" # Which script to run to set up the firewall
> firewall_type="open" # Firewall type (client /etc/rc.firewall)
> firewall_quiet="NO" # Set to YES to suppress rule display
> natd_program="/sbin/natd" # path to natd, if you want a different one.
> natd_enable="YES" # Enable natd (if firewall_enable == YES).
> natd_interface="ed1" # Public interface or IPaddress to use.
> natd_flags="" # Additional flags for natd.
Don't touch /etc/defaults/rc.conf. Put the override values in rc.conf.
I think the contents of /etc/defaults should be set 444 and schg in
installation.
--
Crist J. Clark cjclark@home.com
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000321222925.B85043>