|
|
|
|
google site
|
|||||||
| Forums | Register | Blog | Man Pages | Forum Rules | Links | Albums | FAQ | Users | Calendar | Search | Today's Posts | Mark Forums Read |
| BSD BSD, sometimes called Berkeley Unix, is a Unix operating system developed by the Computer Systems Research Group of the UC Berkeley. |
 |
Powered by 
|
|
|
Thread Tools | Search this Thread | Rate Thread | Display Modes |
08-19-2009
|
|||
|
|||
|
gateway can't see thru to "local" side
I have a new FreeBSD 7 web server that connects just fine from the INTERNET side. I'd like to be able to keep that connectivity and then have "authorized" users able to access and be served documents from the INTRANET side. My Firewall works so good, that when I connect from the INTERNET side, I can't "reach-thru" to the INTRANET side. I'm new to this part of FreeBSD and can use some help. I installed after much reading but still don't know if I am able to do this ...
 My config looks like this... ........................... FreeBsd System ........................ Internet <---1---> Card re0 | card em0 <---2--> INTrANET #1 connects from INTERNET - does not see #2 from hard-coded link  #2 connects and sees #1 and #2 Thanks is advance for any assistance... |
| Sponsored Links |
|
|
|
08-19-2009
|
||||
|
||||
|
does each server have only 1 nic (as it seems from your schema)? if so, at least server 1 requires 2nics in order to provide internet access to intranet users.
the first nic connects the server to the internet and the second nic connects it to the intranet. Last edited by Leppie; 08-19-2009 at 11:04 PM.. |
|
08-20-2009
|
|||
|
|||
|
Quote:
the other NIC with inside address (10.10.10.xx)... not complicated ... just haven't been able to make it work ... |
|
09-14-2009
|
|||
|
|||
|
if I understand what you're trying to do, you have internet on your outside nic of 173.8.xxx and when it receives traffic destined for 10.10.xx it doesn't pass? If that's the case, it shouldn't. You will need to set up natd to monitor incoming connections and have a static nat setup in order for outside public ip traffic to route to the internal nic. If you monitor the traffic on the 10.10.xx nic with tcpdump, I'm pretty sure that you'll see the traffic coming in and out, however anything not local on the outside nic will get /dev/null'd at your outbound router since the 10.10.10 can't route outside of your network.
If I'm completely wrong here, and your firewall is active on that system, and running ipfw add an ipfw add ### allow ip from 173.8.xxx.xx/xx any to 10.10.10.xx/xx any and a return rule of ipfw add ### allow ip from 10.10.10.xx/xx any to 173.8.xxx.xx/xx any to correct it. |
| Sponsored Links |
|
|
|
| Bookmarks |
| Thread Tools | Search this Thread |
| Display Modes | Rate This Thread |
|
|
More UNIX and Linux Forum Topics You Might Find Helpful
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Mac OS X 10.3: How to look up ".local" hostnames via both Bonjour and standard DNS | Linux Bot | OS X Support RSS | 0 | 04-25-2009 11:45 PM |
| Mac OS X 10.4, 10.5: How to look up ".local" hostnames via both Bonjour and standard | Linux Bot | OS X Support RSS | 0 | 04-25-2009 11:45 PM |
| Ho do I masquerade the "user@user.local" address in mail/mailx? | gczychi | OS X (Apple) | 0 | 04-18-2009 03:31 PM |
| Can you force local NTP server to be accepted as "suitable"? | jjinno | UNIX for Dummies Questions & Answers | 0 | 06-10-2008 05:30 PM |
| Explain the line "mn_code=`env|grep "..mn"|awk -F"=" '{print $2}'`" | Lokesha | UNIX for Dummies Questions & Answers | 4 | 12-20-2007 01:52 AM |
Linear Mode
