Re: Problem with gateway and ipfw in FreeBSD 5.2

[Toni Schmidbauer]

On Fri, Jul 02, 2004 at 11:23:05AM +0800, Tony Liew wrote:
> My problem, from FreeBSD I can ping outside and inside network.
> from Internal network, I can ping internal interface and external 
> interface of FreeBSD Router. But I cannot ping the modem IP address so 
> goes public DNS server on the internet.

does "sysctl -w net.inet.ip.forwarding=1" help?

hth
toni
-- 
Wer es einmal so weit gebracht hat, dass er nicht | toni at stderror dot at
mehr irrt, der hat auch zu arbeiten aufgehoert| Toni Schmidbauer
-- Max Planck |


pgpZmkQfUuRue.pgp
Description: PGP signature

Re: Problem with gateway and ipfw in FreeBSD 5.2

[Nathan Kinkade]

On Fri, Jul 02, 2004 at 11:23:05AM +0800, Tony Liew wrote:
> Hi,
> 
> Currently I am trying out FreeBSD 5.2.
> 
> SDSL modem
>|
> FreeBSD Router
>|
> Internal network
> 
> My problem, from FreeBSD I can ping outside and inside network.
> from Internal network, I can ping internal interface and external 
> interface of FreeBSD Router. But I cannot ping the modem IP address so 
> goes public DNS server on the internet.
> 
> I have in my KERNEL:
> options   BRIDGE
> options   DIVERT
> options   IPFIREWALL
> options   IPFIREWALL_DEFAULT_TO_ACCEPT
> 
> rc.conf
> gateway_enable="YES"
> defaultrouter=""
> firewall_enable="YES"
> firewall_type="OPEN"
> natd_interface=""
> natd_enable="YES"
> router_enable="YES"
> 
> sysctl.conf
> 
> net.link.ether.bridge.enable=1
> net.link.ether.bridge.config=external interface, internal interface
> net.link.ether.bridge.ipfw=1
> 
> 
> client on the internal network cannot connect to the internet. Any 
> suggestion?
> 
> Thanks a lot.
> 
> Regards,
> Tony Liew

Why do you have bridging enabled?  Trying turning off bridging:
net.link.ether.bridge.enable=0
And then make sure that you have the FW enabled:
net.inet.ip.fw.enable=1

Nathan
-- 
PGP Public Key: pgp.mit.edu:11371/pks/lookup?op=get&search=0xD8527E49


pgpd9124gcz0M.pgp
Description: PGP signature