SEO

If there is a good guy that could help i'll kiss him scenario
internet-----modemrouter[10.0.0.2]--rl0[192.168.1.9]openbsdrl1[dhcp]---hub-w
in2000

|__knoppix
my pf.conf
# macros
int_if = "fxp0"
ext_if = "ep0"
tcp_services = "{ 22, 113 }"
icmp_types = "echoreq"
priv_nets = "{ 127.0.0.0/8, 192.168.0.0/16, 172.16.0.0/12, 10.0.0.0/8 }"
# options
set block-policy return
set loginterface $ext_if
# scrub
scrub in all
# nat/rdr
nat on $ext_if from $int_if:network to any -> ($ext_if)
rdr on $int_if proto tcp from any to any port 21 -> 127.0.0.1 \
port 8021
# filter rules
block all
pass quick on lo0 all
block drop in quick on $ext_if from $priv_nets to any
block drop out quick on $ext_if from any to $priv_nets
pass in on $ext_if inet proto tcp from any to ($ext_if) \
port $tcp_services flags S/SA keep state
pass in inet proto icmp all icmp-type $icmp_types keep state
pass in on $int_if from $int_if:network to any keep state
pass out on $int_if from any to $int_if:network keep state
pass out on $ext_if proto tcp all modulate state flags S/SA
pass out on $ext_if proto { udp, icmp } all keep state
here my dhcp.conf
# $OpenBSD: dhcpd.conf,v 1.1 1998/08/19 04:25:45 form Exp $

#

# DHCP server options.

# See dhcpd.conf(5) and dhcpd(8) for more information.

#

# Network: 192.168.1.0/255.255.255.0

# Domain name: my.domain

# Name servers: 192.168.1.3 and 192.168.1.5

# Default router: 192.168.1.1

# Addresses: 192.168.1.32 - 192.168.1.127

#

shared-network LOCAL-NET {

option domain-name "HAZZi.com";

option domain-name-servers 192.168.0.1, 192.168.1.5;

option netbios-name-servers 192.168.0.105;

subnet 192.168.0.0 netmask 255.255.255.0 {

option routers 192.168.0.1;

range 192.168.0.100 192.168.0.110;

}

}



my /etc/hostnamerl0
inet 192.168.1.9 255.255.255.0 NONE
/etc/hostnamerl1
dhcp NONE NONE NONE
1 problem i cann't nat with win2000 and the ip that igot is always
169.254.254.214
pinging to the router gateway no sign
i think the problem is my router modem adsl starbridge eu working as a dhcp
aswell

hazz wrote:

> If there is a good guy that could help i'll kiss him scenario
> internet-----modemrouter[10.0.0.2]--rl0[192.168.1.9]openbsdrl
[dhcp]---hub-w
> in2000
>
> |__knoppix
> my pf.conf
> # macros
> int_if = "fxp0"
> ext_if = "ep0"
> tcp_services = "{ 22, 113 }"
> icmp_types = "echoreq"
> priv_nets = "{ 127.0.0.0/8, 192.168.0.0/16, 172.16.0.0/12, 10.0.0.0/8
> }"
> # options
> set block-policy return
> set loginterface $ext_if
> # scrub
> scrub in all
> # nat/rdr
> nat on $ext_if from $int_if:network to any -> ($ext_if)
> rdr on $int_if proto tcp from any to any port 21 -> 127.0.0.1 \
> port 8021
> # filter rules
> block all
> pass quick on lo0 all
> block drop in quick on $ext_if from $priv_nets to any
> block drop out quick on $ext_if from any to $priv_nets
> pass in on $ext_if inet proto tcp from any to ($ext_if) \
> port $tcp_services flags S/SA keep state
> pass in inet proto icmp all icmp-type $icmp_types keep state
> pass in on $int_if from $int_if:network to any keep state
> pass out on $int_if from any to $int_if:network keep state
> pass out on $ext_if proto tcp all modulate state flags S/SA
> pass out on $ext_if proto { udp, icmp } all keep state
> here my dhcp.conf
> # $OpenBSD: dhcpd.conf,v 1.1 1998/08/19 04:25:45 form Exp $
>
> #
>
> # DHCP server options.
>
> # See dhcpd.conf(5) and dhcpd(8) for more information.
>
> #
>
> # Network: 192.168.1.0/255.255.255.0
>
> # Domain name: my.domain
>
> # Name servers: 192.168.1.3 and 192.168.1.5
>
> # Default router: 192.168.1.1
>
> # Addresses: 192.168.1.32 - 192.168.1.127
>
> #
>
> shared-network LOCAL-NET {
>
> option domain-name "HAZZi.com";
>
> option domain-name-servers 192.168.0.1, 192.168.1.5;
>
> option netbios-name-servers 192.168.0.105;
>
> subnet 192.168.0.0 netmask 255.255.255.0 {
>
> option routers 192.168.0.1;
>
> range 192.168.0.100 192.168.0.110;
>
> }
>
> }
>
>
>
> my /etc/hostnamerl0

^^^^^^^^^^^^^^ should be /etc/hostname.rl0


> inet 192.168.1.9 255.255.255.0 NONE
> /etc/hostnamerl1

^^^^^^^^^^^^^^^ should be /etc/hostname.rl1

> dhcp NONE NONE NONE
> 1 problem i cann't nat with win2000 and the ip that igot is always
> 169.254.254.214
> pinging to the router gateway no sign
> i think the problem is my router modem adsl starbridge eu working as a
> dhcp aswell

No. Simple configuration error? (Did not check the rest but this one is
soooo obvious.

EJ
--
Remove the obvious part (including the dot) for my email address.
http://www.vanwesten.net for examples of ipf and pf.

> my pf.conf
> # macros
> int_if = "fxp0"
> ext_if = "ep0"
> tcp_services = "{ 22, 113 }"
> icmp_types = "echoreq"
> priv_nets = "{ 127.0.0.0/8, 192.168.0.0/16, 172.16.0.0/12, 10.0.0.0/8 }"
> # options
> set block-policy return
> set loginterface $ext_if
> # scrub
> scrub in all
> # nat/rdr
> nat on $ext_if from $int_if:network to any -> ($ext_if)
> rdr on $int_if proto tcp from any to any port 21 -> 127.0.0.1 \
> port 8021
> # filter rules
> block all
> pass quick on lo0 all
> block drop in quick on $ext_if from $priv_nets to any
> block drop out quick on $ext_if from any to $priv_nets
> pass in on $ext_if inet proto tcp from any to ($ext_if) \
> port $tcp_services flags S/SA keep state
> pass in inet proto icmp all icmp-type $icmp_types keep state
> pass in on $int_if from $int_if:network to any keep state
> pass out on $int_if from any to $int_if:network keep state
> pass out on $ext_if proto tcp all modulate state flags S/SA
> pass out on $ext_if proto { udp, icmp } all keep state
> here my dhcp.conf
dhcpd.conf?
> 169.254.254.214
APIPA-address, you get this when dhcp is not available.
but i guess it's because you didn't define $int_ifnetwork in pf.conf