Subject: Firewall/Router ipnat.conf
To: bsd <port-mac68k@netbsd.org>
From: Ron Landrus <ronlandrus@yahoo.com>
List: port-mac68k
Date: 03/08/2001 14:51:26
Erik,
Your correct, I can do everything from the router, but
from an internal computer all I cn get to are ip# say
less than 200.? and there is no dns working on the
internal but 100% on the router.
Look at this log file.
ifcongfig -a
ae0:
flags=8863<UP,BROADCAST,NOTRAILERS,RUNNING,SIMPLEX,MULTICAST>
mtu 1500
address: 00:00:94:21:72:68
media: Ethernet manual
inet 192.168.1.2 netmask 0xffffff00 broadcast
192.168.1.255
ae1:
flags=8863<UP,BROADCAST,NOTRAILERS,RUNNING,SIMPLEX,MULTICAST>
mtu 1500
address: 00:00:94:07:ca:13
media: Ethernet manual
inet 63.162.21.215 netmask 0xffffff80 broadcast
255.255.255.255
lo0: flags=8009<UP,LOOPBACK,MULTICAST> mtu 32976
inet 127.0.0.1 netmask 0xff000000
ppp0: flags=8010<POINTOPOINT,MULTICAST> mtu 1500
ppp1: flags=8010<POINTOPOINT,MULTICAST> mtu 1500
tun0: flags=10<POINTOPOINT> mtu 1500
tun1: flags=10<POINTOPOINT> mtu 1500
macbsd# cat/etc/ipnat.conf
#Basic for non-static IPs on external I/F ae1
map ae1 192.168.1.0/24 -> 0.0.0.0/32 proxy port ftp
ftp/tcp
map ae1 192.168.1.0/24 -> 0.0.0.0/32 portmap tcp/udp
10000:40000
map ae1 192.168.1.0/24 -> 0.0.0.0/32
macbsd# cat resolv.conf
search buckeyecablesystem.com
nameserver 208.16.180.5
nameserver 208.16.180.6
macbsd#
Any suggestions on the ipnat?
Thanks
Ron
This is definitly a NAT issue. The configuration must
be wrong. Here
is a
sample:
map hme0 10.10.10.0/24 -> 192.168.1.1/32 proxy port
ftp ftp/tcp
map hme0 10.10.10.0/24 -> 192.168.1.1//32 portmap
tcp/udp 1:65535
map hme0 10.10.10.0/24 -> 192.168.1.1//32
in the above case, hme0 is my external interface and
is assigned the
address 192.168.1.1 and 10.10.10.0 is the internal
address space.
=====
Ron
=====
Ron
ronlandrus@yahoo.com
ronlandrus@myvzw.com
A web page...
http://www.geocities.com/ronlandrus/
A photo page...
http://photos.yahoo.com/ronlandrus
__________________________________________________
Do You Yahoo!?
Get email at your own domain with Yahoo! Mail.
http://personal.mail.yahoo.com/