PB CONFIG
Hye!!! I need help about configuration of following situation: ADSL-MODEM <== 10.0.0.0/8 ==> (ed1) FREEBSD (ep0) <== 192.168.0.0/16 == ... I would like that my FreeBSD acts as a transparent firewall router. I red some things about that, but i do not success to install it on my router. I had made a new kernel with IPDIVERT, IPFIREWALL... My ADSL connection is ok but my clients computers do not success to access to the Internet... Could some one gives me some detailled explanations about what to do??? Thanks Zel. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "[EMAIL PROTECTED]"
pb nat
Could someone help me please... (I m'not very good at net on freebsd and i am in front of a problem i cannot resolve !!!) I installed on an old computer (a Pentium 1 at 100Mhz with 32Mo RAM) a FreeBSD 4.4.1 for firewall nat activity with an ADSL Internet connection. So: The situation is described below: Alcatel SpeedTouch < - > (ed1) FREEBSD Station (ep0) < - > Local area network Ethernet ed1 is a NE2000 compatible ISA network card. ep0 is a 3Com 509COMBO ISA network card. IPs are ed1 : 10.0.0.1 over 10.0.0.0 /24 ep0 : 192.168.1.254 over 192.168.1.0/24 in my rc.conf : my configuration of ppp is ok because I can connect to Internet and request dns servers from FREEBSD... But i never succeed to connect ADSL with client workstation. I compiled my kernel with IPDIVERT, IPFIREWALL, IPFIREWALL_FORWARD And I store in rc.conf the following lines as mentionned in some websites: ppp_nat="YES" natd_enabled="YES" natd_interface="ed1" natd_flags="" gateway_enable="YES" But the kernel answer is always the same: 192.168.1.X is on ep0 but get an answer from ed1 !!! Is it not the job of NAT to translate address So !!! What can I do... If you need some informations to resolve my pb, please, send me your question... Thanks ZEL ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "[EMAIL PROTECTED]"
[freebsd-net] pb with nat....
I had a pb with my config and now with your help... it is resolved by, now I am in front of a new problem: The situation is described below: - 10.0.0.0/24 - - 192.168.1.0/24 - ed1/tun0 ep0 So... All outcoming packets are 'nated' by the firewall, which is a very small computer (a P100 with only 24 Mo RAM and a little hard drive..). So this computer must not do an other thing than firewalling, routing or nating packets. But, I would like offer ftp and telnet services on an another computer behind the firewall for computers inside and outside of the LAN. I think that natd would do perfectly this job, but natd already run on interface tun0 for Internet access. What can I do to offer theses services ? Thanks. Zel ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Problem of newbee !!!
Here is my problem: My config is described below: P100 + FreeBSD 4.4 for DMZ job ep0 (10.0.0.1) to Internet ed1 (10.1.0.254) gateway for 10.1.0.0/24 network (servers...) ed2 (192.168.1.254) gateway for 192.168.1.0/24 network (workstations...) So currently, connected with an ethernet ADSL modem to the Internet, I 'natd' all packets out and incoming... But now, I would like transfer all ftp request to one server behind DMZ... ftpd is running (on 10.1.0.1) I read man and some informations on forums about natd and so, I tried: natd -redirect_port tcp 10.1.0.1:20-21 20-21 I tried few other commands but I always have the same answer: natd: aliasing address not given ... What can I do ? Is the soft I currently try to use, the good one to do what I want to do ??? Please, help... Thanks.. Sylvain ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Pb with nat and redirection
Hye !!!
Ok, yesterday, I posted a question, and someone answerd me, but, the solution
(or what I've done to install it) failed.
Does someone could say me why ?
The situation is described below:
Ethernet
ADSL
modem
o ---10.0.0.0/24--- A --- 10.1.0.0 / 24 ---
|
|
|
192.168.1.0/24
|
|
|
A is a routing firewall computer (creating a DMZ).
(Based on a freeBsd 4.4).
Its IP addresses are
10.0.0.1
10.1.0.254
192.168.1.254
Workstations are on 192.168.1.0/24 network and
servers are on 10.1.0.0/24.
ifconfig on A displays:
ep0 ...
ed1 ...
ed2 ...
tun0 ..
->
->
The FTP server is 10.1.0.1 so
natd is running on A with this parameters:
-dynamic -n tun0 -redirect_port tcp 10.1.0.1:ftp ftp
But when I try to connect to my FTP server from outside, I receive the classic
message : "Connection closed by host", but I can access to my FTP server from
inside.
What can I do, where is the mistake ?
Thanks.
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
[net]pb of newbee !!!
Here is my problem... Ethernet 10.0.0.0/24<-> 192.168.1.0/24 workstations. ADSL < FreeBSD firewalling routing Modem <-> 10.1.0.0/24 servers (DMZ) So the firewall has some net interfaces: ep0, ed1 and ed2 but also tun0 for ADSL pppoe... I use natd for nating all packets through Internet but I would like offer a FTP service over Internet and my local AREA. My FTP server is launched on an another FreeBSD computer placed in the DMZ. Currently, all workstations can access to it, and the firewall too. But, I cannot access to my FTP server from outside... Someone gave me the following solution but, it does not work... (possibly due to a mystake in my configuration) natd -dynamic -n tun0 -redirect_port 10.1.0.1:ftp ftp (10.1.0.1 is the ftp server IP address). When I look what it is spending, i got the following results. tun0 receive the incoming packet but does not forward it to the good computer. (ftp client shows so the classic message: "connection closed by host", which is meaning that the ftp client try to connect to the firewall instead of the ftp server) So: What I have to do to make it works ? Thanks for your help... Sylvain. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "[EMAIL PROTECTED]"
PLEASE HEEEEEELLLLPPPP ME...
please HELP !!! Ok... here is my problem that I tried to explain completly ! The situation is the one below: = |SpeedToucheHome Ethernet ADSL Modem| |10.0.0.138/24 | = | 10.0.0.0/24 | == | 10.0.0.1/24 | | (A) 10.1.0.254/24 |- 10.1.0.0/24 - (... DMZ ...) | 192.168.1.254/24| == | 192.168.1.0/24 | ... clients workstations My problem is about the computer A which does not what I would like It does. Currently, this computer has a customized kernel with thoses options: IPFIREWALL IPDIVERT but not IPFILTER !!! maybe it is the problem, I don't know ! in the rc.conf, I made the following configuration firewall_enabled="YES" firewall_type="SIMPLE" (but I tried too with OPEN") natd_enable="YES" natd_interface="tun0" (this is the interface for PPPoE, I think) natd_flags="-f /etc/natd.conf" ... and in natd.conf: dynamic interface tun0 redirect_port tcp 10.1.0.1:20-21 20-21 10.1.0.1 is the IP address from my FTP server which is a computer placed in the DMZ. My problem is: "from outside, I cannot access to the FTP server..." What I can say is: First: My FTP server is OK because from inside, I can access to it from any computer in DMZ or from clients workstations. Secund: The answer to an outside request is "connection closed by host". Third: Interface tun0 (the virtual interface for PPPoE) receives the ftp request but does not forward them to ed1 (the outside netcard from A and configured with 10.0.0.1). (I discoverd that with tcpdump). (the others interfaces get no more ftp packets from tun0)... So, what can I do to solve this problem... Thank you Sylvain. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "[EMAIL PROTECTED]"
