LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Other *NIX Forums > *BSD
Reload this Page No internet acess through bridging firewall
User Name
Password
*BSD This forum is for the discussion of all BSD variants.
FreeBSD, OpenBSD, NetBSD, etc.

Notices


Reply
  Search this Thread
Old 03-16-2005, 04:14 PM   #1
mullog
Member
 
Registered: May 2004
Posts: 61

Rep: Reputation: 15
No internet acess through bridging firewall

Hi,

I'm trying to implement a bridging firewall at home and for some reason that i am yet to discover...it's not working!

Here goes the basic info:
-2 realtek 8139 chipset NIC(different vendors, but i think that's alright) on the bridging firewall(BF)
-2 NIC:NVIDIA nForce Networking Controller and Marvell Yukon 88E8001/8003/8010 PCI Gigabit Ethernet Controller on the desktop(D-which soon will be protected...i hope)

They are connected this way:
8139(device name rl0)<-----cat5 cable----->NVIDIA nForce Networking Controller
8139(device name rl1)<-----crossed over cat5 cable---->Marvell Yukon 88E8001/8003/8010 PCI Gigabit Ethernet Controller

Openbsd3.6(patched) configuration:
/etc/rc.conf everything turned off but pf.
/etc/bridgename0.bridge0 add rl0 add rl1 up
/etc/hostname.rl0 up
/etc/hostname.rl1 up
/etc/pf.conf #nothing yet

Things that i don't understand at bootup and may be of any value:
route: myname: bad adress

And finally ifconfig -a:
lo0...
rl0 active...
rl1 active...
pflog0...
pfsync0...
enc0...
bridge0: flags=41<UP,RUNNING> mtu 1500

And that's that, any ideas.
 
Old 03-17-2005, 10:35 AM   #2
sigsegv
Senior Member
 
Registered: Nov 2004
Location: Third rock from the Sun
Distribution: NetBSD-2, FreeBSD-5.4, OpenBSD-3.[67], RHEL[34], OSX 10.4.1
Posts: 1,197

Rep: Reputation: 47
Well, first of all, you're description of the problem isn't really detailed enough. "not working" can cover *many* things. Are you not able to pass packets at all, or are you not able to resolve names or are you not able to browse the www or what?

Also -- are the nForce and Yukon cards detected? I know the nForce based on the 3com is supported, but you don't mention which you have. I see no mention of a Yukon anything in the HCL for i386 (though I admit a total lack of experience with those cards, and some of the Marvel stuff is supported).

It's also not entirely clear from your description exactly what it is you're trying to do ... Are all 4 of these interfaces in the same machine? If so, why do you have them cabled to each other?

Last but not least ... Assuming you get all the NICs working and all that -- is your pf configured to pass or drop by default?
Last edited by sigsegv; 03-17-2005 at 10:39 AM.
 
Old 03-24-2005, 03:13 PM   #3
dsegel
Member
 
Registered: Aug 2004
Location: Davis, California
Distribution: Gentoo, always Gentoo.
Posts: 159

Rep: Reputation: 30
What's in your /etc/myname file?

Try disabling pf with 'pfctl -d' first to make sure the bridge itself is working.

I'm also confused about how you have things wired up. You should only need one NIC on your desktop PC, and it should be connected to one side of the bridge (e.g. one of the two NICs in your BSD bridge box.) The other side of the bridge should be connected to your source for Internet connectivity, or the LAN you're getting a connection from.
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Can not acess the internet MurX Linux - Software 6 11-29-2005 09:08 PM
Problem with DHCP on computer connected to the internet through a bridging firewall mullog *BSD 2 04-23-2005 08:41 AM
bridging firewall cortj Linux - Security 1 03-11-2005 03:48 AM
Witch Firewall? (rh9 Romote acess) jdwacko Linux - Security 2 04-07-2004 10:27 PM
OpenBSD 3.0 : Bridging Firewall aru *BSD 1 06-16-2002 01:35 AM

LinuxQuestions.org > Forums > Other *NIX Forums > *BSD

All times are GMT -5. The time now is 04:39 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration