Network Help
Steven N. Fettig
freebsd at stevenfettig.com
Mon May 10 07:45:30 PDT 2004
Jeffrey P. Toth wrote:
> Thank you for your response Ion-Mihai,
>
> On the router question, no, the router is a separate device, a D-Link
> 504H but is a loaner while my D-Link 804HV is in the shop. After
> changing them out is when I discovered I had problems. Apparently the
> DL804 handled whatever the problem was without a complaint.
>
> Yes I have been through setup a few times. So far all I have been able
> to do is take the server off-line.
>
> I have also looked up setup for NATD and I think I can enable it but
> would not be able to write the firewall rules for it to read yet, as I
> understand needs to be done. I also had a little help with setup
> originally and I know there is something of a firewall setup but
> without know what exactly I would be afraid of interfering with what
> is there and making a mess of it.
>
> Sorry I am such a non-user.
>
> Jeff
>
Jeff,
I've been reading this thread and I think you need to start from the
beginning. I am going to make a broad assumption that your D-Link is
set up correctly and that it *is* a sort of broadband router that does
NAT and has DHCP services. This means that the D-Link should be somehow
connected to your DSL modem and/or Cable modem (unless you are using
some other sort of connection - I couldn't find the 504H on D-Link's
site, but was able to find the 804HV and am *again* assuming that it is
similar).
So here is the assumption list:
- Your D-Link is capable of doing NAT and DHCP
- You can ping the D-Link from your FreeBSD box (Win box, etc.) - if you
can't STOP - this is your first problem.
- Your router's internal address is 192.168.0.1 with a netmask of
255.255.255.0
- You have chosen to statically assign your inside machines with addy's
(although you could also get the addy assignment via DHCP from the
D-Link, you may have chosen to go the static route for other reasons).
On the FreeBSD box:
in rc.conf you should keep:
ifconfig_xl0="inet 192.168.0.150 netmask 255.255.255.0" # <-- no other
machine on the network should have this address
defaultrouter="192.168.0.1"
Assigning an address to rl0 is irrelevant - also, make sure that that
interface is unplugged from your network. Make sure the xl0 interface
is plugged in correctly.
For now, also make sure the following is true:
natd_enable="NO"
firewall_enable="NO"
Save rc.conf
Now, take a look at resolv.conf.
It should show something like:
nameserver 192.168.0.1
or the address of a nameserver you know is valid. Get rid of any other
lines for now - you can simply comment them out by beginning the line
with #.
Save resolv.conf
Although there are ways around this, reboot the machine.
Once back up and running, you should be able to ping the router and ping
an address like yahoo.com. If you can't ping a website outside your
internal network - i.e. Yahoo's - then there is a problem probably
related to the D-Link.
On every machine, you should (basically) have the following configuration:
IP: 192.168.0.x (NOT 1 or any address that you have used with another
machine)
netmask: 255.255.255.0
gateway: 192.168.0.1
DNS: 192.168.0.1 (or other valid DNS cache server).
Since you are not doing NAT or firewalling on the FreeBSD machine, there
is no need to enable them. If you eventually want to do firewalling
directly on the FreeBSD box, then you can enable it and configure it
after you have solved your networking problems.
I would recommend simply allowing the IP addy's to be assigned via DHCP,
though. On FreeBSD, you simply put:
ifconfig_xl0="dhcp"
in rc.conf and get rid of the other config info. Also, leave the
firewall and nat off.
In resolv.conf you can comment everything out with # as it will be
assigned dynamically by the dhcp server.
This *should* get you going...
Steve
More information about the freebsd-questions
mailing list