ipnat
Lourik Malan
lourik at wtec.co.za
Fri Sep 23 03:27:45 PDT 2005
Hi There
I need some help. I've always used Freebsd 4.x as my main firewall, now i've
upgrade to 5.4 with the same config files. I can ping the net from the
BSD-server, but not from the lan. All my config files is below
Please help.
Thanks
# This is my config rc.conf
ifconfig_xl1_alias0=" inet 196.23.176.188 netmask 255.255.255.255"
ifconfig_xl1_alias1=" inet 196.23.176.189 netmask 255.255.255.255"
ifconfig_xl1_alias2=" inet 196.23.176.190 netmask 255.255.255.255"
ifconfig_xl1_alias3=" inet 196.23.176.186 netmask 255.255.255.255"
ifconfig_xl1_alias4=" inet 196.23.176.185 netmask 255.255.255.255"
ifconfig_xl1_alias5=" inet 196.23.176.184 netmask 255.255.255.255"
ifconfig_xl1_alias6=" inet 196.23.176.183 netmask 255.255.255.255"
ifconfig_xl1=" inet 196.23.176.187 netmask 255.255.255.240"
ifconfig_xl0=" inet 172.20.154.2 netmask 255.255.255.0"
# This is my ipnat.rules
bimap xl1 172.20.154.199/32 -> 196.23.176.188/32
bimap xl1 172.20.154.198/32 -> 196.23.176.189/32
bimap xl1 172.20.154.197/32 -> 196.23.176.190/32
bimap xl1 172.20.154.3/32 -> 196.23.176.186/32
map xl1 172.20.154.0/24 -> 196.23.176.187/32
RC.conf
firewall_enable="YES"
firewall_script="/etc/rc.firewall"
firewall_type="OPEN"
firewall_quiet="NO"
firewall_logging="YES"
firewall_flags=""
ipfilter_enable="YES"
ipfilter_program="/sbin/ipf"
ipfilter_rules="/etc/ipf.rules"
ipfilter_flags=""
ipnat_enable="YES"
ipnat_program="/sbin/ipnat"
ipnat_rules="/etc/ipnat.rules"
ipnat_flags=""
ipmon_enable="YES"
ipmon_program="/sbin/ipmon"
ipmon_flags="-Ds"
In my kernel
options IPFIREWALL
options IPFIREWALL_VERBOSE
options IPFIREWALL_VERBOSE_LIMIT
options DUMMYNET
options HZ=1000
ipf.rules
pass in all
pass out all
More information about the freebsd-net
mailing list