Всем привет! Помогите понять почему клиенту не выдается белый IP адрес. Вроде все настроил, но IP нет.
Смаршрутизированный пул от провайдера XXX.XXX.192.16/29
Сервер FreeBSD, PF, IPFW, MPD5
rc.conf
ifconfig_em0="DHCP"
ifconfig_em0_alias0="inet XXX.XXX.192.22 netmask 255.255.255.248"
ifconfig_em1="inet 172.16.10.1 netmask 255.255.255.0"
ifconfig_em1_alias0="inet 172.16.1.1 netmask 255.255.255.0"
ifconfig_em1_alias3="inet 172.16.11.1 netmask 255.255.255.0"
pf.conf
ext_if = "ng0"
set limit states 128000
set optimization aggressive
binat on $ext_if from 172.16.10.2 to any -> XXX.XXX.192.22
nat pass on $ext_if from 172.16.10.0/24 to any -> ($ext_if)
nat pass on $ext_if from 172.16.1.0/24 to any -> ($ext_if)
nat pass on $ext_if from 172.16.11.0/24 to any -> ($ext_if)
ifconfig
em0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=209b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_MAGIC>
ether d4:ca:6d:6f:93:a8
inet XXX.XXX.192.22 netmask 0xfffffff8 broadcast XXX.XXX.192.23
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
media: Ethernet autoselect (1000baseT <full-duplex>)
status: active
em1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=209b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_MAGIC>
ether 90:e2:ba:52:6c:7d
inet6 fe80::92e2:baff:fe52:6c7d%em1 prefixlen 64 scopeid 0x4
inet 172.16.10.1 netmask 0xffffff00 broadcast 172.16.10.255
inet 172.16.1.1 netmask 0xffffff00 broadcast 172.16.1.255
inet 172.16.11.1 netmask 0xffffff00 broadcast 172.16.11.255
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
media: Ethernet autoselect (1000baseT <full-duplex>)
status: active
nfe0: flags=8802<BROADCAST,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=82008<VLAN_MTU,WOL_MAGIC,LINKSTATE>
ether 00:22:15:b5:9a:46
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
media: Ethernet autoselect (none)
status: no carrier
plip0: flags=8810<POINTOPOINT,SIMPLEX,MULTICAST> metric 0 mtu 1500
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
ipfw0: flags=8800<SIMPLEX,MULTICAST> metric 0 mtu 65536
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
options=600003<RXCSUM,TXCSUM,RXCSUM_IPV6,TXCSUM_IPV6>
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x8
inet 127.0.0.1 netmask 0xff000000
inet 172.16.254.1 netmask 0xffffffff
nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
ng0: flags=88d1<UP,POINTOPOINT,RUNNING,NOARP,SIMPLEX,MULTICAST> metric 0 mtu 1480
inet XXX.XXX.193.103 --> XXX.XXX.2.191 netmask 0xffffffff
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
В билинге IP-пул добавил, тип пула статический. Клиенту адрес добавил, он светится но ключик авторизации не загорается. Что может быть?
А может IP и выдался только не пойму как проверить, пинга нету, хотя пакеты пишет идут. Возможно просто через серый IP
root@base:/usr/home/sergey # pfctl -sn -v
No ALTQ support in kernel
ALTQ related functions disabled
nat pass on ng0 inet from 172.16.10.0/24 to any -> (ng0) round-robin
[ Evaluations: 26685919 Packets: 25738881 Bytes: 18678146431 States: 20250 ]
[ Inserted: uid 0 pid 70001 State Creations: 1013228]
nat pass on ng0 inet from 172.16.1.0/24 to any -> (ng0) round-robin
[ Evaluations: 573854 Packets: 0 Bytes: 0 States: 0 ]
[ Inserted: uid 0 pid 70001 State Creations: 0 ]
nat pass on ng0 inet from 172.16.11.0/24 to any -> (ng0) round-robin
[ Evaluations: 573854 Packets: 12491130 Bytes: 8170210170 States: 9232 ]
[ Inserted: uid 0 pid 70001 State Creations: 533458]
binat on ng0 inet from 172.16.10.2 to any -> XXX.XXX.192.22
[ Evaluations: 96085763 Packets: 960449 Bytes: 884396979 States: 187 ]
[ Inserted: uid 0 pid 70001 State Creations: 14243 ]
