I have OpenBSD 4.0 with three nics (internet, wired, wireless). A WinXP
system (10.0.0.11) on wireless has access to internet and can ping Win98
system (192.168.0.15) on wired side, but cannot print to printer (192.168.0.7).
Firewalls disabled on Windows systems for this test.
Ping from OpenBSD to WinXP, Win98 and printer all work properly.
Ping from WinXP to Win98 works.
C:\Documents and Settings\Nancy>ping 192.168.0.15
Pinging 192.168.0.15 with 32 bytes of data:
Reply from 192.168.0.15: bytes=32 time=1ms TTL=127
Reply from 192.168.0.15: bytes=32 time=1ms TTL=127
Reply from 192.168.0.15: bytes=32 time=2ms TTL=127
Reply from 192.168.0.15: bytes=32 time=1ms TTL=127
Ping statistics for 192.168.0.15:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 1ms, Maximum = 2ms, Average = 1ms
Ping from WinXP to printer fails.
C:\Documents and Settings\Nancy>ping 192.168.0.7
Pinging 192.168.0.7 with 32 bytes of data:
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Ping statistics for 192.168.0.7:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss),
$ cat /etc/hostname.pppoe0
inet 0.0.0.0 255.255.255.255 NONE pppoedev vr0 authproto pap authname
b1XXXXXX authkey XXXXXX up
dest 0.0.0.1
!/sbin/route add default 0.0.0.1
$ cat /etc/hostname.vr0
up
$ cat /etc/hostname.fxp0
inet 192.168.0.2 255.255.255.0 NONE
$ cat /etc/hostname.ral0
inet 10.0.0.2 255.255.255.0 10.0.0.255 media DS2 mediaopt hostap mode 11b
nwid XXXXXX nwkey XXXXXX
$ cat /etc/mybridge.bridge0
add fxp0 add ral0 up
$ sudo grep -v ^# /etc/pf.conf
ext_if = "pppoe0"
int_if = "fxp0"
air_if = "ral0"
scrub out on $ext_if max-mss 1440
nat on $ext_if from $int_if:network -> ($ext_if)
nat on $ext_if from $air_if:network -> ($ext_if)
$ sudo pfctl -s nat
nat on pppoe0 inet from 192.168.0.0/24 to any -> (pppoe0) round-robin
nat on pppoe0 inet from 10.0.0.0/24 to any -> (pppoe0) round-robin
$ sudo pfctl -s rules
scrub out on pppoe0 all max-mss 1440 fragment reassemble
$ ifconfig
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 33224
groups: lo
inet 127.0.0.1 netmask 0xff000000
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x7
fxp0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:06:29:33:a4:91
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet 192.168.0.2 netmask 0xffffff00 broadcast 192.168.0.255
inet6 fe80::206:29ff:fe33:a491%fxp0 prefixlen 64 scopeid 0x1
vr0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:50:ba:0a:33:9d
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet6 fe80::250:baff:fe0a:339d%vr0 prefixlen 64 scopeid 0x2
ral0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:12:17:99:70:2d
media: IEEE802.11 DS2 mode 11b hostap (autoselect mode 11b hostap)
status: active
ieee80211: nwid thebestone chan 2 bssid 00:12:17:99:70:2d nwkey
<not displayed> 100dBm
inet 10.0.0.2 netmask 0xffffff00 broadcast 10.0.0.255
inet6 fe80::212:17ff:fe99:702d%ral0 prefixlen 64 scopeid 0x3
pflog0: flags=141<UP,RUNNING,PROMISC> mtu 33224
pfsync0: flags=0<> mtu 1460
groups: carp
enc0: flags=0<> mtu 1536
pppoe0: flags=8851<UP,POINTOPOINT,RUNNING,SIMPLEX,MULTICAST> mtu 1492
dev: vr0 state: session
sid: 0x4ba PADI retries: 0 PADR retries: 0 time: 3d 04:52:08
sppp: phase network authproto pap authname "b1XXXXXX"
groups: pppoe egress
inet6 fe80::206:29ff:fe33:a491%pppoe0 -> prefixlen 64 scopeid 0x8
inet 65.95.132.190 --> 0.0.0.1 netmask 0xffffffff
$ route show
Routing tables
Internet:
Destination Gateway Flags Refs Use Mtu Interface
default 0.0.0.1 UGS 8 3961700 - pppoe0
0.0.0.1 default UH 1 0 - pppoe0
10.0.0/24 link#3 UC 1 0 - ral0
10.0.0.11 00:0c:e5:4e:97:71 UHLc 1 76100 - ral0
loopback localhost UGRS 0 0 33224 lo0
localhost localhost UH 1 192 33224 lo0
192.168.0/24 link#1 UC 6 0 - fxp0
192.168.0.7 08:00:09:e4:3c:cb UHLc 0 329 - fxp0
192.168.0.11 00:50:ba:50:6b:15 UHLc 1 106608 - fxp0
192.168.0.12 00:50:fc:6c:a4:14 UHLc 0 735364 - fxp0
192.168.0.15 00:d0:59:0e:53:8a UHLc 3 48799 - fxp0
192.168.0.30 00:00:b4:a9:0e:d6 UHLc 0 664401 - fxp0
192.168.0.31 00:0e:a6:50:13:b6 UHLc 0 1417232 - fxp0
BASE-ADDRESS.MCAST localhost URS 0 0 33224 lo0
Internet6:
Destination Gateway Flags Refs Use Mtu Interface
::/104 localhost UGRS 0 0 - lo0
::/96 localhost UGRS 0 0 - lo0
localhost localhost UH 12 0 33224 lo0
::127.0.0.0/104 localhost UGRS 0 0 - lo0
::224.0.0.0/100 localhost UGRS 0 0 - lo0
::255.0.0.0/104 localhost UGRS 0 0 - lo0
::ffff:0.0.0.0/96 localhost UGRS 0 0 - lo0
2002::/24 localhost UGRS 0 0 - lo0
2002:7f00::/24 localhost UGRS 0 0 - lo0
2002:e000::/20 localhost UGRS 0 0 - lo0
2002:ff00::/24 localhost UGRS 0 0 - lo0
fe80::/10 localhost UGRS 0 0 - lo0
fe80::%fxp0/64 link#1 UC 0 0 - fxp0
fe80::206:29ff:fe3 00:06:29:33:a4:91 UHL 0 0 - lo0
fe80::%vr0/64 link#2 UC 0 0 - vr0
fe80::250:baff:fe0 00:50:ba:0a:33:9d UHL 0 0 - lo0
fe80::%ral0/64 link#3 UC 0 0 - ral0
fe80::212:17ff:fe9 00:12:17:99:70:2d UHL 0 0 - lo0
fe80::%lo0/64 fe80::1%lo0 U 0 0 - lo0
fe80::1%lo0 link#7 UHL 0 0 - lo0
fe80::%pppoe0/64 fe80::206:29ff:fe3 U 0 0 - pppoe0
fe80::206:29ff:fe3 link#8 UHL 0 0 - lo0
fec0::/10 localhost UGRS 0 0 - lo0
ff01::/32 localhost UC 0 0 - lo0
ff02::%fxp0/32 link#1 UC 0 0 - fxp0
ff02::%vr0/32 link#2 UC 0 0 - vr0
ff02::%ral0/32 link#3 UC 0 0 - ral0
ff02::%lo0/32 localhost UC 0 0 - lo0
ff02::%pppoe0/32 fe80::206:29ff:fe3 UC 0 0 - pppoe0
