NATD and PPP problem
Jacob Vennervald Madsen
jvennervald at proventum.net
Tue Aug 5 23:27:13 PDT 2003
Hi
Thanks a lot!
The natd_flag="-dynamic" worked. Aparently the pppoe interface tun0
wasn't active yet when natd was started so it couldn't find the
interface.
Cheers,
Jacob Vennervald
On Wed, 2003-08-06 at 00:06, Francesco Casadei wrote:
> On Tue, Aug 05, 2003 at 05:02:50PM +0200, Jacob Vennervald wrote:
> > Hi
> >
> > I've installed a FreeBSD 4.8 machine, which I wanna use as a
> > NAT/Router/Firewall.
> > I have setup the pppoe connection which works perfectly and then I've
> > tried to setup the machine as a NAT Router by setting the following in
> > the rc.conf:
> > firewall_enable="YES"
> > firewall_type="open"
> > natd_enable="YES"
> > natd_interface="tun0"
> > But when I restart the machine it gives me the following error:
> > "Firewall rules loaded, starting divert daemons: natdnatd: tun0: cannot
> > get interface address"
> >
> > When I log in and type "ifconfig" I can also see that the tun0 interface
> > doesn't exist, but when I turn off the two natd settings in rc.conf and
> > reboot it does exist.
> >
> > Can anybody help?
> >
> > Cheers,
> > Jacob Vennervald
> >
> > _______________________________________________
> > freebsd-questions at freebsd.org mailing list
> > http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> > To unsubscribe, send any mail to "freebsd-questions-unsubscribe at freebsd.org"
> > end of the original message
>
> Use the -dynamic flag if the tun0 interface is not configured when natd
> starts up. From natd(8) manpage:
>
> [...]
> -dynamic
> If the -n or -interface option is used, natd will monitor the
> routing socket for alterations to the interface passed. If
> the interface's IP number is changed, natd will dynamically
> alter its concept of the alias address.
> [...]
>
> Add the following line to /etc/rc.conf:
>
> natd_flags="-dynamic"
>
> Even if you solved the problem, you may also want to try this solution.
>
> Francesco Casadei
> --
> You can download my public key from http://digilander.libero.it/fcasadei/
> or retrieve it from a keyserver (pgpkeys.mit.edu, wwwkeys.pgp.net, ...)
>
> Key fingerprint is: 1671 9A23 ACB4 520A E7EE 00B0 7EC3 375F 164E B17B
>
--
Venlig hilsen / Best regards,
Jacob Vennervald
System Developer
Proventum Solutions ApS
Tuborg Boulevard 12
2900 Hellerup
Denmark
Phone: +45 36 94 41 66
Mobile: +45 61 68 58 51
More information about the freebsd-questions
mailing list