martin g wrote:
Hello allAprox. 2 weeks ago i posted a question titled web browsing to this list. It was about how to setup NAT on my gateway so intranet computers can access Internet. The current situation is: I have a obsd3.9 box connected to internet using ppp.conf, on the inside i have a winXP box connected to switch, connected to obsd box. The thing that wasn't working was that my XP box couldn't access web pages. I blamed it on pf.conf. But that wasn't the case. Today i tried this: I turned off Pf ---- i will set that up later I checked man ppp and found this info. ...to turn on NAT add this line to ppp.conf nat enable yes... . With this line added to ppp.conf things started to work. Now the question : 1. My resolv.conf contains namesservers from my ISP 2. At the begining xp box was setup with DNS parameter pointing to my gateway 192.168.0.1. I could not access Internet, then i changed this parameter to dns server ip of my ISP and things work again. What must i do that things will work with dns parameter set to my gateway ?
Your GW needs to run dns, resolv.conf sets up dns for the GW to use for itself; it does not make it a forwarder or nameserver . Do a search for setting up a caching dns box.
Alternatively you could I suppose proxy dns requests from your client PC to your ISP's dns servers ...
Are there any security threats with parameters set to dns ip form my ISP ? Will this be a problem when setting up Pf ?
Depends on weather your ISP knows how to keep their dns servers secure.
