Hi, I'm using ipnat for one to one mappings in my FreeBSD router using IPnat. I got several interfaces plus Vlans ; rl0 - Local (192.168.0.x), em0, em1, em2, em3 - External (internet), em4, vlan0, vlan1, vlan2, vlan3, vlan4, vlan5, vlan6, vlan7, vlan8, vlan9 - DMZ ( 202.xxx.10.x). my ipnat.rules ; map em3 192.168.0.0/24 <http://192.168.0.0/24> -> 0/32 portmap tcp/udp auto map em3 192.168.0.0/24 <http://192.168.0.0/24> -> 0/32 # Server bimap em3 192.168.0.22/32 <http://192.168.0.22/32> -> 202.xxx.10.7/32 bimap vlan2 192.168.0.22/32 <http://192.168.0.22/32> -> 202.xxx.10.7/32 bimap vlan3 192.168.0.22/32 <http://192.168.0.22/32> -> 202.xxx.10.7/32 bimap vlan4 192.168.0.22/32 <http://192.168.0.22/32> -> 202.xxx.10.7/32 bimap vlan5 192.168.0.22/32 <http://192.168.0.22/32> -> 202.xxx.10.7/32 bimap rl0 192.168.0.22/32 <http://192.168.0.22/32> -> 202.xxx.10.7/32 202.xxx.10.7/32 was included in vlan9, my local already can ping to 202.xxx.10.7 and that's mean it's working at Lan but the problem is I can't ping 202.xxx.10.7 from another same subnet ip eg: 202.xxx.10.10 and it give me this result ; [root_at_SatelliteVod ~]# ping 202.xxx.10.7 PING 202.xxx.10.7 (202.xxx.10.7) 56(84) bytes of data. >From 202.xxx.10.10 icmp_seq=0 Destination Host Unreachable >From 202.xxx.10.10 icmp_seq=1 Destination Host Unreachable >From 202.xxx.10.10 icmp_seq=2 Destination Host Unreachable Also I can't ping 202.xxx.10.7 from router itself, it's give me this result ; > ping 202.xxx.10.7 PING 202.xxx.10.7 (202.xxx.10.7): 56 data bytes ping: sendto: Host is down ping: sendto: Host is down ping: sendto: Host is down --- 202.xxx.10.7 ping statistics --- 9 packets transmitted, 0 packets received, 100% packet loss There's no problem when I try to ping the server from outside. I just pass all out and pass in all in my ipf.rules so I think there's no problem with ipfilter. Thanks, Nik.Received on Wed Nov 09 2005 - 08:48:05 UTC
This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:38:47 UTC