NATD and PPP problem
Jacob Vennervald
jvennervald at proventum.net
Tue Aug 5 12:38:45 PDT 2003
Hi
Here is the ppp.conf file:
default:
set log Phase tun command # you can add more detailed logging if
you wish
set ifaddr 10.0.0.1/0 10.0.0.2/0 0.0.0.0 0.0.0.0
webpartner:
set device PPPoE:xl0
set authname XXXXXXXX
set authkey XXXXXXXX
set dial
set login
add default HISADDR
Here's the complete rc.conf file:
# Setup PPPoE for internet connection
ppp_enable="YES"
ppp_mode="ddial"
ppp_nat="NO" # if you want to enable nat for your local network,
otherwise NO
ppp_profile="webpartner"
# Setup NAT on external interface
firewall_enable="YES"
firewall_type="open"
gateway_enable="YES"
natd_enable="YES"
natd_interface="tun0"
# Setup internal interface
ifconfig_fxp0="inet 10.0.0.1 netmask 255.255.255.0"
# Set the hostname of the server
hostname="myhost.mydomain.com"
# Extra network settings
inetd_enable="NO"
kern_securelevel_enable="NO"
nfs_reserved_port_only="YES"
sendmail_enable="NO"
sshd_enable="YES"
# Enable linux binaries
linux_enable="YES"
# Localization
font8x8="iso-8x8"
font8x14="iso-8x14"
font8x16="iso-8x16"
scrnmap="NO"
keymap="danish.iso"
# Enable mouse daemon
moused_enable="YES"
Andrew Boothman wrote:
>On Tuesday 05 August 2003 4:02 pm, Jacob Vennervald wrote:
>
>
>
>>I have setup the pppoe connection which works perfectly and then I've
>>tried to setup the machine as a NAT Router by setting the following in
>>the rc.conf:
>>firewall_enable="YES"
>>firewall_type="open"
>>natd_enable="YES"
>>natd_interface="tun0"
>>But when I restart the machine it gives me the following error:
>>"Firewall rules loaded, starting divert daemons: natdnatd: tun0: cannot
>>get interface address"
>>
>>
>
>Hmmm.... Strange.....
>
>I've got 4.8 doing what you want, except using an xl0 instead of a tun0 as the
>natd_interface because I get an ethernet port on my cable modem.
>
>Do you have ifconfig_tun0 = "DHCP" or something simiar in your rc.conf, or
>does pppoe set things up differently? How is pppoe configured to start in
>your setup? Can we see a more complete rc.conf (you can remove any specific
>addresses or other incriminating evidance ;)
>
>I can't say I have any experience with your problem - but hopefully we can
>shed some light on it.
>
>Cheers.
>
>Andrew
>
>
>
>
More information about the freebsd-questions
mailing list