FreeBSD 5.1 <-> WinXP Networking Problem UPDATE #2

Hauan, David david.hauan at fairchild.af.mil
Tue Jul 20 08:45:56 PDT 2004 


> -----Original Message-----
> From: freebsder [mailto:freebsder51 at yahoo.com]
> Sent: Sunday, July 18, 2004 10:16 AM
> To: boxend at redtick.homeunix.com
> Cc: freebsd-questions at freebsd.org
> Subject: Re: FreeBSD 5.1 <-> WinXP Networking Problem UPDATE #2
> 
> 
> Hi Mark,
> 
> I put in: 
> natd_flags="-dynamic"
> But I could not get it up and running.
> 
> Btw, previously, what I've been doing to get the
> machine on line was typing in:
> 
> # ipfw add 100 allow tcp from any to any via any
> 00100 allow tcp from any to any
> # ipfw add 100 allow ip from any to any via any
> 00100 allow ip from any to any
> 
> I'm doing this because this allows me to surf the web
> and download my Email respectively.  So when I do an
> ipfw, I get:
> 
> # ipfw -a list
> 00100 308 68064 allow tcp from any to any
> 00100  38  3187 allow ip from any to any
> 65535 337 23993 deny ip from any to any
> 
> Now, after I made the change you suggested and
> rebooted, I got:
> # ipfw -a list
> 00050 276 17396 divert 8668 ip from any to any via
> tun0
> 00100 134 14156 allow ip from any to any via lo0
> 00200   0     0 deny ip from any to 127.0.0.0/8
> 00300   0     0 deny ip from 127.0.0.0/8 to any
> 65000   0     0 allow ip from any to any
> 65535   0     0 deny ip from any to any
> 
> Then I tried pinging out from my Win XP box to no
> avail. 
> 
> I even added:
> 
> # ipfw add 100 allow tcp from any to any via any
> 00100 allow tcp from any to any
> # ipfw add 100 allow ip from any to any via any
> 00100 allow ip from any to any
> 
> to get:
> 
> 00050 286 17938 divert 8668 ip from any to any via
> tun0
> 00100 134 14156 allow ip from any to any via lo0
> 00100   0     0 allow tcp from any to any
> 00100   0     0 allow ip from any to any
> 00200   0     0 deny ip from any to 127.0.0.0/8
> 00300   0     0 deny ip from 127.0.0.0/8 to any
> 65000   0     0 allow ip from any to any
> 65535   0     0 deny ip from any to any
> 
> but still no dice!
> 
> I'm thinking I should probably Delete the following
> two lines from above:
> 00200   0     0 deny ip from any to 127.0.0.0/8
> 00300   0     0 deny ip from 127.0.0.0/8 to any
> 
> and see what happends.  I will try this out now, but
> if you have any other suggestions, prey tell.
> 
> as always ... thankyou.
> 
> Your Message::
> 
> Jumping in late, 
> 
> natd_enable="YES" # forward from inside
> natd_interface="tun0"  # this being the connection to
> outside world 
> natd_flags="-dynamic" # because the ip addy may change
> 
> 
> I don't know what your trying to do here??
> >natd_flags="redirect_port tcp 192.168.1.1:80 80"
> I would remove this until you get everything else
> working.
> 
This all looks fine to me.

Is your winxp gateway set correctly?
It should be the internal IP of your 
FreeBSd box.

dave

More information about the freebsd-questions mailing list