Date: Mon, 30 Oct 2000 10:25:11 +0100 From: "Daniel Ruthardt" <ruthardt@chello.at> To: <cjclark@alum.mit.edu> Cc: <freebsd-questions@freebsd.org> Subject: IP Masquerading - Using NAT Message-ID: <KDEOJJLADGAOLHAHFGMKCEDBCBAA.ruthardt@chello.at> In-Reply-To: <20001029143205.X75251@149.211.6.64.reflexcom.com>
next in thread | previous in thread | raw e-mail | index | archive | help
We might be able to help you figure out what you may have done wrong
>>if you gave us some details on what you did. Some things that would
>>help there:
>>
>> $ cat /etc/rc.conf
>> $ fgrep 'IP packet filtering' /var/run/dmesg.boot
>> $ ifconfig -a
>> $ ipfw show
>>
>>If you have a natd.conf file,
>>
>> $ cat natd.conf
>>
>>If you have made a custom firewall script (the distributed rc.firewall
>>script should work out of the box with natd(8) and an "OPEN" setting),
>>please include that.
>>--
>>Crist J. Clark cjclark@alum.mit.edu
Here are the informations you need to help me:
$ cat /etc/rc.conf
# This file now contains just the overrides from /etc/defaults/rc.conf
# please make all changes to this file.
keymap="german.iso"
gateway_enable="YES"
hostname="dowee.com"
firewall_enable="YES"
firewall_type="OPEN"
natd_interface="xl0"
natd_enable="YES"
ifconfig_xl0="DHCP"
ifconfig_xl0_alias0="inet 192.0.0.1 netmask 255.255.255.0"
$ fgrep 'IP packet filtering' /var/run/dmesg.boot
IP packet filtering initialized, divert enabled, rule-based forwarding
disabled,
default to deny, logging disabled
$ ifconfig -a
xl0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
inet6 fe80::250:4ff:fe4d:3695%xl0 prefixlen 64 scopeid 0x1
inet 212.186.196.204 netmask 0xffffff00 broadcast 212.186.196.255
inet 192.0.0.1 netmask 0xffffff00 broadcast 192.0.0.255
ether 00:50:04:4d:36:95
media: 10baseT/UTP (10baseT/UTP <half-duplex>)
supported media: 10baseT/UTP <full-duplex> 10baseT/UTP <half-duplex>
10b
aseT/UTP
lp0: flags=8810<POINTOPOINT,SIMPLEX,MULTICAST> mtu 1500
sl0: flags=c010<POINTOPOINT,LINK2,MULTICAST> mtu 552
ppp0: flags=8010<POINTOPOINT,MULTICAST> mtu 1500
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x5
inet6 ::1 prefixlen 128
inet 127.0.0.1 netmask 0xff000000
gif0: flags=8010<POINTOPOINT,MULTICAST> mtu 1280
inet6 fe80::250:4ff:fe4d:3695%gif0 prefixlen 64 scopeid 0x6
gif1: flags=8010<POINTOPOINT,MULTICAST> mtu 1280
inet6 fe80::250:4ff:fe4d:3695%gif1 prefixlen 64 scopeid 0x7
gif2: flags=8010<POINTOPOINT,MULTICAST> mtu 1280
inet6 fe80::250:4ff:fe4d:3695%gif2 prefixlen 64 scopeid 0x8
gif3: flags=8010<POINTOPOINT,MULTICAST> mtu 1280
inet6 fe80::250:4ff:fe4d:3695%gif3 prefixlen 64 scopeid 0x9
stf0: flags=8000<MULTICAST> mtu 1280
inet6 fe80::250:4ff:fe4d:3695%stf0 prefixlen 64 scopeid 0xa
faith0: flags=8000<MULTICAST> mtu 1500
$ ipfw show
00100 3064 945994 divert 8668 ip from any to any via xl0
00100 0 0 allow ip from any to any via lo0
00200 0 0 deny ip from any to 127.0.0.0/8
65000 3064 945994 allow ip from any to any
65535 2 656 deny ip from any to any
Hope the information tells you what i've done wrong (-:
Thanks,
Daniel
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?KDEOJJLADGAOLHAHFGMKCEDBCBAA.ruthardt>