[Sunhelp] ipfilter fustration
Gregory Leblanc
GLeblanc at cu-portland.edu
Wed Mar 8 12:06:00 CST 2000
> -----Original Message-----
> From: David Rouse [mailto:cn1407 at coastalnet.com]
> Sent: Monday, March 06, 2000 5:36 PM
> To: SunHelp List
> Subject: [Sunhelp] ipfilter fustration
>
>
> I've got a IPX running Sol 7 at home that I'd like to use as a dial-up
> router, i.e. it connects to my ISP (dynamic TCP/IP address
> through PPP,
> regular phone modem) and the rest of the home network (a
> sparc 10 and this
> iMac) connect through it using NAT.
>
> On the IPX I've got gcc 2.8.1 (precomplied), ip filters 3.3.11 and
> ppp-2.3.10 (I've also used the Solaris aspppd).
>
> The ppp side works, I can dial in and do traceroutes, pings,
> nslookups. But
> when I'm on another machine (the Sparc 10, which has the PPP
> box as its
> default router) I get no response from pings, etc. When I run
> 'ipmon -o -N'
> on the PPP box I get nothing, even while pinging from the
> other box. When I
> run 'ipfstat -s' all the fields are empty except 'misses'.
>
> The local network is set with nodes using the 192.168.0.x range with a
> netmask of 255.255.255.192. All of the boxes are in the same
> subnet. My
> nat.conf is:
>
> map ppp0 192.168.0.0/32 -> 0/32 proxy port ftp ftp/tcp
> map ppp0 192.168.0.0/32 -> 0/32 portmap tcp/udp 10000:40000
> map ppp0 192.168.0.0/32 -> 0/32
I'm not familiar with ipfilter, but let me know if I screw this. First
thing to try is pinging the ethernet interface on the gateway. If that
doesn't work, then you have other issues. Second thing to try is pinging
the ppp0 address from a machine inside. If that doesn't work, it's a config
problem. What exactly is the above syntax supposed to do? It looks to me
like it would say use 192.168.0.0, with a subnet mask of 255.255.255.255, or
32 bits, which means ONLY THAT HOST. Whoops, that just might be the
problem. Try a mask of 24 bits, or 255.255.255.0. I really think that's
the problem, but I can't be sure until you try it.
Greg
More information about the SunHELP
mailing list