NEWBIE: FreeBSD 4.10 Internet gateway/DNS problem

Admin admin at swedehost.com
Tue Jul 13 10:06:06 PDT 2004 

On Tuesday 13 July 2004 18.56, Dancho Penev wrote:
> On Tue, Jul 13, 2004 at 10:51:21AM -0500, James A. Coulter wrote:
> >From: "James A. Coulter" <james.coulter at cox.net>
> >To: <freebsd-questions at freebsd.org>
> >Date: Tue, 13 Jul 2004 10:51:21 -0500
> >Subject: NEWBIE: FreeBSD 4.10 Internet gateway/DNS problem
> >
> >I am trying to setup my FreeBSD 4.10 box as an internet gateway for a
> > small home LAN (2x Win XP and 1x Win 98SE)
> >
> >The LAN operates without any problems when using the Win 98SE box as a
> >gateway - all computers can access the internet
> >
> >I have two nics installed in the FreeBSD box:
> >
> >	dc0 is the LAN interface via 4-port Linksys hub
> >
> >	dc1 is the WAN interface via cable modem
> >
> >I have successfully connected to the internet with dc1
> >
> >I can ping all other machines on my home LAN with dc0 and vice versa
> >
> >I cannot access the internet from any machine except the FreeBSD gateway
> >
> >ifconfig looks like this:
> >
> >dc0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
> >        inet6 fe80::204:5aff:fe76:55f0%dc0 prefixlen 64 scopeid 0x1
> >        inet 192.168.1.1 netmask 0xffffff00 broadcast 192.168.1.255
> >        ether 00:04:5a:76:55:f0
> >        media: Ethernet autoselect (100baseTX <full-duplex>)
> >        status: active
> >dc1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
> >        inet6 fe80::2a0:ccff:fe33:e1f6%dc1 prefixlen 64 scopeid 0x2
> >        inet 68.105.58.150 netmask 0xfffffe00 broadcast 68.105.59.255
> >        ether 00:a0:cc:33:e1:f6
> >        media: Ethernet autoselect (100baseTX <full-duplex>)
> >        status: active
> >lp0: flags=8810<POINTOPOINT,SIMPLEX,MULTICAST> mtu 1500
> >lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
> >        inet6 ::1 prefixlen 128
> >        inet6 fe80::1%lo0 prefixlen 64 scopeid 0x4
> >        inet 127.0.0.1 netmask 0xff000000
> >ppp0: flags=8010<POINTOPOINT,MULTICAST> mtu 1500
> >sl0: flags=c010<POINTOPOINT,LINK2,MULTICAST> mtu 552
> >faith0: flags=8002<BROADCAST,MULTICAST> mtu 1500
> >
> >
> >The contents of /etc/rc.conf are:
> >
> >hostname="sara.mshome.net"
> >ifconfig_dc0="inet 192.168.1.1 netmask 255.255.255.0" ifconfig_dc1="DHCP"
> ><snip> inetd_enable="YES" gateway_enable="YES"
> >
> >When I try to ping an outside address from a Windows box, I get this
> >response:
> >
> >"Ping request could not find host www.freebsd.org. Please check the name
> > and try again."
> >
> >When I try to ping a known good URL, I get this response:
> >
> >Pinging 68.99.63.5 with 32 bytes of data:
> >
> >Request timed out.
> >
> >Ping statistics for 68.99.63.5:
> >
> >    Packets: Sent = 4, Received = 0, Lost = 4 (100% loss)
> >
> >I have tried setting the DNS servers on the Windows box to the addresses
> >listed in /etc/resolv.conf:
> >
> >68.105.161.20
> >68.1.18.25
> >68.10.16.30
> >
> >I have also tried setting the DNS address directly to the default gateway
> >192.168.1.1 and get the same response.
> >
> >While searching around in /stand/sysinstall I found the named daemon
> >enabled.  I disabled with no change (I have since re-enabled it because I
> >believe that was the default setting when I installed FreeBSD)
> >
> >FWIW, here's output of netstat -rn on the FreeBSD box:
> >
> >Internet:
> >Destination        Gateway            Flags    Refs      Use  Netif Expire
> >default            68.105.58.1        UGSc        2        3    dc1
> >68.105.58/23       link#2             UC          2        0    dc1
> >68.105.58.1        00:06:2a:cb:7c:54  UHLW        2        0    dc1   1199
> >68.105.58.150      127.0.0.1          UGHS        0        0    lo0
> >127.0.0.1          127.0.0.1          UH          2       26    lo0
> >192.168.1          link#1             UC          1        0    dc0
> >192.168.1.110      00:08:74:3b:8b:ba  UHLW        0        4    dc0   1081
> >
> >Internet6:
> >Destination                       Gateway                       Flags
> >Netif Expire
> >
> >::/96                             ::1                           UGRSc
> >
> >lo0
> >
> >::1                               ::1                           UH
> >
> >lo0
> >
> >::ffff:0.0.0.0/96                 ::1                           UGRSc
> >
> >lo0
> >fe80::/10                         ::1                           UGRSc
> >lo0
> >fe80::%dc0/64                     link#1                        UC
> >dc0
> >fe80::204:5aff:fe76:55f0%dc0      00:04:5a:76:55:f0             UHL
> >lo0
> >fe80::%dc1/64                     link#2                        UC
> >dc1
> >fe80::2a0:ccff:fe33:e1f6%dc1      00:a0:cc:33:e1:f6             UHL
> >lo0
> >fe80::%lo0/64                     fe80::1%lo0                   Uc
> >lo0
> >fe80::1%lo0                       link#4                        UHL
> >lo0
> >ff01::/32                         ::1                           U
> >lo0
> >ff02::/16                         ::1                           UGRS
> >lo0
> >ff02::%dc0/32                     link#1                        UC
> >dc0
> >ff02::%dc1/32                     link#2                        UC
> >dc1
> >ff02::%lo0/32                     ::1                           UC
> >lo0
> >
> >And the results of netstat -rn on the Windows box:
> >
> >Active Routes:
> >Network Destination        Netmask          Gateway       Interface 
> > Metric 0.0.0.0          0.0.0.0      192.168.1.1   192.168.1.110	  20
> > 127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1	  1
> > 192.168.1.0    255.255.255.0    192.168.1.110   192.168.1.110	  20
> > 192.168.1.110  255.255.255.255        127.0.0.1       127.0.0.1	  20
> > 192.168.1.255  255.255.255.255    192.168.1.110   192.168.1.110	  20
> > 224.0.0.0        240.0.0.0    192.168.1.110   192.168.1.110	  20
> > 255.255.255.255  255.255.255.255    192.168.1.110   192.168.1.110	  1
> > Default Gateway:       192.168.1.1
> >==========================================================================
> >= Persistent Routes:
> >  None
> >
> >I'm not sure what to do next.  For some reason the Windows cannot access a
> >name server.  From what I understand from the literature I've been using
> >(FreeBSD Handbook, Lehey's The Complete FreeBSD, and Anderson's FreeBSD:
> > An Open-Source etc etc) all that should be needed is set
> > gateway_enable="YES" in /etc/rc.conf and I've done that.
> >
> >Google revealed some info on using natd for PPOE, but not sure if that
> >applies to this problem.
>
> Definitely you must use NAT. Search Handbook for Network Address
> Translation.
>
> >All suggestions/out-right solutions appreciated.
> >
> >TIA,
> >
> >Jim C.
> >
Hello.
You might try something like this in your /etc/rc.conf :
gateway_enable="YES"
ifconfig_dc1="DHCP"
dhcp_program="/sbin/dhclient"
dhcp_flags="-q"
ifconfig_dc0="inet 192.168.1.1 netmask 255.255.255.0"
natd_enable="YES"
natd_interface="dc0"
natd_flags="-dynamic"
And if you like some little protection :
firewall_enable="YES"
firewall_script="/etc/rc.firewall"
firewall_type="OPEN"
firewall_logging="YES"
And it's never wrong to spend some time reading the man pages :-)
Don't forget to put the IP of your Gateway on the Winboxes.
/Hasse

More information about the freebsd-questions mailing list