Problem with gateway and ipfw in FreeBSD 5.2
Nathan Kinkade
nkinkade at ub.edu.bz
Fri Jul 2 07:43:43 PDT 2004
On Fri, Jul 02, 2004 at 11:23:05AM +0800, Tony Liew wrote:
> Hi,
>
> Currently I am trying out FreeBSD 5.2.
>
> SDSL modem
> |
> FreeBSD Router
> |
> Internal network
>
> My problem, from FreeBSD I can ping outside and inside network.
> from Internal network, I can ping internal interface and external
> interface of FreeBSD Router. But I cannot ping the modem IP address so
> goes public DNS server on the internet.
>
> I have in my KERNEL:
> options BRIDGE
> options DIVERT
> options IPFIREWALL
> options IPFIREWALL_DEFAULT_TO_ACCEPT
>
> rc.conf
> gateway_enable="YES"
> defaultrouter="<modem ip>"
> firewall_enable="YES"
> firewall_type="OPEN"
> natd_interface="<external interface>"
> natd_enable="YES"
> router_enable="YES"
>
> sysctl.conf
>
> net.link.ether.bridge.enable=1
> net.link.ether.bridge.config=external interface, internal interface
> net.link.ether.bridge.ipfw=1
>
>
> client on the internal network cannot connect to the internet. Any
> suggestion?
>
> Thanks a lot.
>
> Regards,
> Tony Liew
Why do you have bridging enabled? Trying turning off bridging:
net.link.ether.bridge.enable=0
And then make sure that you have the FW enabled:
net.inet.ip.fw.enable=1
Nathan
--
PGP Public Key: pgp.mit.edu:11371/pks/lookup?op=get&search=0xD8527E49
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20040702/b8d27a7a/attachment.bin
More information about the freebsd-questions
mailing list