[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

IPF/IPNAT Problem

To: misc_(_at_)_openbsd_(_dot_)_org
Subject: IPF/IPNAT Problem
From: "shrimpcookie" <shrimpcookie_(_at_)_mediaone_(_dot_)_net>
Date: Fri, 13 Apr 2001 15:14:59 -0700

Using OpenBSD 2.8 - stable, IPF and IPNAT as a gateway/router for my Windows 98 machine.

I am having problems accessing the Internet from the OpenBSD gateway through my 
Windows 98 machine. Access to the gateway via SSH from the Windows 98 machine 
is possible, as well as pinging the gateway from the Windows 98 machine and vise versa. 

The Windows 98 machine is connected to the gateway via a crossover cat 5 cable. 

My ISP (cable provider) is MediaOne (recently bought out by AT&T) which allocates an IP 
to the OpenBSD gateway via DHCP. 

The Internet is accessible from the gateway. Unfortunately, IPF/IPNAT isn't doing what It has 
been configured to do even though the gateway has been rebooted. 

Hope someone can help out with the problem.

Best regards,

-shrimpcookie

The following reflects my current OpenBSD 2.8 gateway configuration: 

	--hostname.dc0--

shrimpcookie# cat hostname.dc0
dhcp NONE NONE NONE 
shrimpcookie#

	--hostname.dc1--

shrimpcookie# cat hostname.dc1
inet 192.168.1.1 255.255.255.0 NONE 
shrimpcookie#
 
	--ifconfig--

shrimpcookie# ifconfig dc0
dc0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
        media: Ethernet autoselect (10baseT)
        status: active
        inet6 fe80::2a0:ccff:fe37:722c%dc0 prefixlen 64 scopeid 0x1
        inet 24.31.44.167 netmask 0xffffff80 broadcast 24.31.44.255

shrimpcookie# ifconfig dc1
dc1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
        media: Ethernet autoselect (100baseTX full-duplex)
        status: active
        inet 192.168.1.1 netmask 0xffffff00 broadcast 192.168.1.255
        inet6 fe80::220:78ff:fe1c:bcb0%dc1 prefixlen 64 scopeid 0x2

	--sysctl.conf--

net.inet.ip.forwarding=1

	--rc.conf--

ipfilter=YES
ipnat=YES

	--ipf.rules--

shrimpcookie# cat ipf.rules
#       $OpenBSD: ipf.rules,v 1.6 1997/11/04 08:39:32 deraadt Exp $
#
# IP filtering rules.  See the ipf(5) man page for more
# information on the format of this file, and /usr/share/ipf
# for example configuration files.
#
# Pass all packets by default.
# edit the ipfilter= line in /etc/rc.conf to enable IP filtering
#
pass in from any to any
pass out from any to any

	--ipnat.rules--

# $OpenBSD: ipnat.rules,v 1.2 1999/05/08 16:33:10 jason Exp $
#
# See /usr/share/ipf/nat.1 for examples.
# edit the ipnat= line in /etc/rc.conf to enable Network Address Translation

#map ppp0 10.0.0.0/8 -> ppp0/32 portmap tcp/udp 10000:20000

map dc0 192.168.1.0/24 -> dc0/32 portmap tcp/udp 20000:60000
map dc0 192.168.1.0/24 -> dc0/32

	--ipnat -l--

shrimpcookie# ipnat -l
List of active MAP/Redirect filters:
map dc0 192.168.1.0/24  -> 24.31.44.167/32  portmap tcp/udp 20000:60000
map dc0 192.168.1.0/24  -> 24.31.44.167/32 

List of active sessions:
shrimpcookie#

Follow-Ups:
- Re: IPF/IPNAT Problem
  - From: Al Lipscomb

Prev by Date: Re: wscons hangs when pluggin in a mouse
Next by Date: Re: IPF/IPNAT Problem
Previous by thread: Re: multiple pppoe's?
Next by thread: Re: IPF/IPNAT Problem
Index(es):
- Date
- Thread

Visit your host, monkey.org