NAT + 5.0-RELEASE #0

Tue May 13 10:27:25 PDT 2003

On Tue, 13 May 2003, Chris P wrote:

> OK, no responces.. so I went and tried it.  Indeed you do need to tweak
> the kernel.  However Its best to start with a fresh GENERIC kernel, and
> make your mods only a few at a time.  Many mod's I had in my old did not
> work in the new. Plus the instructions for 4.8 are not exacting for 5.0,
> so you may have to play with things to get it all to work.  Overall it was
> not too tough.

Sorry, Cris, when you asked if I really have installed that with FreeBSD
5.0 I realize that I have not.

So, I updated an old computer that we use as router in a private
network and everything worked ok with FreeBSD 5.0-RELEAE p7

And Yes, you have to modify your kernel...

I think that you are right, making modifications in your kernel
description, one at the time, will make you step on solid ground if
something goes wrong.  If you proceed with GENERIC kernel, just remember
that you only need two more lines in your kernel description:

	options IPDIVERT
	options IPFIREWALL

so, if you add them it will work.

Your network configuration will not work if you don't specify in rc.conf
firewall_enable=YES and firewall_type="filename", filename is a file with
your firewall configuration or you can set it to OPEN to make your tests.

Good luck.

>
> C.
>
>
> On Mon, 12 May 2003, Chris P wrote:
>
> > So I'll ask the list now.  Have anyone needed to modify the kernel in 5.0
> > to get NAT to work?  I'm very familiar with needing to do it with the 4.x
> > versions.  I just dont want to have to crash my machine if someone has
> > tried it and failed, or if no one has tried it.  All web pages that talk
> > about it that I have found are for the 4.x versions.
> >
> > Thanks.
> > C.
> >
> > On Mon, 12 May 2003, Chris P wrote:
> >
> > >
> > > Have you actually done this with 5.0?   This is really all I need to know.
> > >
> > > Thanks.
> > >
> > > C.
> > >
> > > On Mon, 12 May 2003, Eduardo Viruena Silva wrote:
> > >
> > > > On Sun, 11 May 2003, Chris P wrote:
> > > >
> > > > >
> > > > > I'm having some issues getting NAT working.
> > > > >
> > > > > It all worked great on 4.8, but I had to tweak the kernel to get it to
> > > > > work.  Anyone else have issues with it working on a stock kernel with 5.0?
> > > >
> > > > include these lines to your kernel description:
> > > >
> > > > 	options	IPDIVERT
> > > > 	options	IPFIREWALL
> > > >
> > > > compile your kernel and install it.
> > > >
> > > > >
> > > > > My net is coming in on an0, and I'm wanting to share it to the house on
> > > > > dc0.
> > > >
> > > > add these lines to your /etc/rc.conf:
> > > >
> > > > 	natd_enable="YES"
> > > > 	natd_interface="an0"
> > > >
> > > > and give your dc0 interface an IP, v. gr:
> > > >
> > > > 	ifconfig_dc0="inet 192.168.1.254 netmask 255.255.255.0"
> > > >
> > > > enable your firewall
> > > >
> > > > 	firewall_enable="YES"
> > > >
> > > > and choose a type for your firewall.
> > > >
> > > > 	firewall_type="file_name"
> > > >
> > > > of course, (full path) file_name  contains the rules for your
> > > > firewall.
> > > >
> > > >
> > > > > dhcp is up and running fine, and the connection to the net is
> > > > > working fine also, just cant get em talking to each other!
> > > > >
> > > > > Any help is appreciated!
> > > > > Thanks..
> > > > >
> > > > > C.
> > > > >
> > > >
> > > > 	Eduardo.
> > > >
> > > > --
> > > > 2B | ~ 2B == ?
> > > >
> > > > 	Hamlet
> > > >