I'm trying to setup a gateway/firewall on my network in a similar setup to that shown in the in the handbook diagram at http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-natd.html. I've followed what I can figure out, adding the following to my /etc/rc.conf gateway_enable="YES" firewall_enable="YES" firewall_type="OPEN" natd_enabl="YES" natd_interface="rl0" My understanding is that in FreeBSD 6 it's not necessary to recompile a kernal with IPFIREWALL and IPDIVERT, but appropriate modules will be loaded automatically. That said, the NAT and gateway stuff doesn't seem to be working properly, leastwise not when I try to connect from my Ubuntu Linux client (See thread here: http://ubuntuforums.org/showthread.php?t=224843) What all am I supposed to do to setup this gateway? SigmaX
On Fri, Jul 28, 2006 at 07:00:18PM -0400, SigmaX asdf wrote:> gateway_enable="YES" > firewall_enable="YES" > firewall_type="OPEN" > natd_enabl="YES"^^^^^^^^^^^^^^^^^^^ Should be natd_enable="YES"
On 7/29/06, Igor Robul <igorr@speechpro.com> wrote:> > On Fri, Jul 28, 2006 at 07:00:18PM -0400, SigmaX asdf wrote: > > gateway_enable="YES" > > firewall_enable="YES" > > firewall_type="OPEN" > > natd_enabl="YES" > ^^^^^^^^^^^^^^^^^^^ > Should be natd_enable="YES"Heh; yeah, typo in my post. The file has it ok. Is there something I have to do to specify the interfaces which have nat enabled? Does natd_enable automatically forward any/every packet to any/every interface? SigmaX
On Sat, Jul 29, 2006 at 01:42:41PM -0400, SigmaX asdf wrote:> >^^^^^^^^^^^^^^^^^^^ > >Should be natd_enable="YES" > > > Heh; yeah, typo in my post. The file has it ok. Is there something I have > to do to specify the interfaces which have nat enabled? Does natd_enable > automatically forward any/every packet to any/every interface?Personally I use ipfilter, but for ipfw/natd you need to specify "divert" rule. You can find many examples, including ones in FreeBSD handbook.