Network problems.

[Matthew Wallis]

I've just built a FreeBSD 5.2.1 server with 4 NIC's.

3 Realtek 8129/8139 cards,
1 Via Rhine onboard.

The kernel has been built with vlan support.
There are 2 vlan's on rl2.
The kernel has been built with ipfilter default deny.
Both ipfw and ipf are in use.

PC is a new 2.4ghz P4 on a VIA chipset.

When I put this in place of the box it is "temporarily" replacing, I 
can ping
out to the world on rl0, I can ping to the other server on vr0.

I get no love from rl1, and I've just realised, I don't think I tried 
to get
any love from rl2. Pinging devices that are on the network that rl1 
serves, I
get no route to host.

I check the firewall rules, and find that we seem to be blocking
packets. Ok, I set the first rules in ipfilter to be

pass in quick from any to any
pass out quick from any to any

and for ipfw

${fwcmd} add <first_rule_number> pass all from any to any

Now I get response timed out, and there are no indications of any 
packets
being blocked.

However, arp -a shows me MAC addresses for machines on that network.

Didn't try tcpdump, that might be my next option. Can anyone thing of
any reasons the cards might not work? They all show up in ifconfig,
it's not that the drivers are limited to one card only are they?

Other than device vlan, is there anything I need in the kernel for
vlan support?

Both getting my thoughts in order, and checking that I didn't leave out
something stupid.

Yes, forwarding is turned on.

Matt.

-- 
Matthew Wallis. Systems and Networks Administrator.
Cybersource. Level 4, 10 Queen St, Melbourne, 3000.
Ph: 03 9621 2377                  		Fax : 03 9621 2477