port-macppc: [Fwd: IPNAT weirdness]

Subject: [Fwd: IPNAT weirdness]
To: NetBSD <port-macppc@netbsd.org>
From: James T. Nelson <jimtnelson@earthlink.net>
List: port-macppc
Date: 07/08/1999 09:14:09
This is a multi-part message in MIME format.
--------------E7DEF72B8E3DEE54B86BCB3D
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit


--------------E7DEF72B8E3DEE54B86BCB3D
Content-Type: message/rfc822
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

Message-ID: <3784CDF9.DC2B809C@earthlink.net>
Date: Thu, 08 Jul 1999 09:12:41 -0700
From: "James T. Nelson" <jimtnelson@earthlink.net>
Reply-To: jimtnelson@earthlink.net
Organization: Nelson-Eriksson
MIME-Version: 1.0
To: oof@oof.org
Subject: Re: IPNAT weirdness
References: <19990707203705.B21371@oof.org>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit

I have another problem:

I set up IPNAT according to the FAQ's, and according to the samples provided
with 1.3.3, and I still cannot route from an mklinux on a Mac 7500 through the
NetBSD box on a i386 machine ppp and beyond.  I can ping the NetBSD box from
MkLinux without difficulty, adn I can talk to the internet from NetBSD. 
Question, is there some kind of IP forwarding setting required as in Linux?  I
have set IPFILTER to 'YES' in rc.conf.  Has anyone had this experience?

Also, is anything besides IPMON supposed to show up in the processes.  running
ps -acx | grep ip gives only ipmon running.  I do not see "ipf" or "ipnat". 
Ipnat loads in the network address translation rules correctly, as far as i
can tell.

Jim Nelson

Oliver O. Fross wrote:
> 
> Hello All-
> 
>         I've got a strange scenario that I can't quite explain.  Perhaps y'all
> can help?  I am running IPNAT at home for my 5 computer network, and when
> I go to certain hosts (using DNS names or IP addresses) my web browser
> of choice (netscape/lynx) displays serverroot from my local http server.
> httpd runs on machine "gateway" below.
> (both machines in question are NetBSD 1.4 / i386)
> 
> Scenario 1:
> 
>         client on internal machine asks for www.imagehost.com
>         request for web page goes through internal network to gateway,
>         and hopefully out onto the real internet
>         client recv's serverroot document from httpd running on gateway
>         Bummer!
> 
> To see if it is my internal network, or somewhere else, I present:
> 
> Scenario 2:
> 
>         client on gateway machine asks for www.imagehost.com
>         BINGO! The correct host: www.imagehost.com shows up.
> 
> Here is my ipnat.conf file:
> 
> map de0 192.168.1.0/24 -> 209.233.18.222/32 portmap tcp/udp 10000:65000
> rdr de0 209.233.18.222/32 port 4444 -> 192.168.1.44 port 23
> rdr de0 209.233.18.222/32 port 21 -> 192.168.1.44 port 21
> 
> Here are the nslookup results:
>   gateway% nslookup imagehost.com
>   Server:  localhost
>   Address:  127.0.0.1
>   Name:    imagehost.com
>   Address:  208.249.121.36
> 
>     internal machine%  nslookup imagehost.com
>     Server:  gateway.mydomain.com
>     Address:  192.168.1.251
>     Non-authoritative answer:
>     Name:    imagehost.com
>     Address:  208.249.121.36
> 
> Note:  This happens for select few other domains, but I can't remember what
> they are right now.
> 
> What on earth could be causing this strange behavior?  Hints & Questions
> welcome.
> 
> TIA.
> --oliver.

--------------E7DEF72B8E3DEE54B86BCB3D--