Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 26 Nov 1998 18:27:17 +0000
From:      Brian Somers <brian@Awfulhak.org>
To:        Forrest Aldrich <forrie@navinet.net>
Cc:        FreeBSD Mailinglist <freebsd-questions@FreeBSD.ORG>
Subject:   Re: natd: what's wrong? 
Message-ID:  <199811261827.SAA00514@woof.lan.awfulhak.org>
In-Reply-To: Your message of "Tue, 24 Nov 1998 13:07:19 EST." <4.1.19981124130704.00a6e2a0@206.25.93.69>
next in thread | previous in thread | raw e-mail | index | archive | help 
> It works, as long as you don't have any firewall rules.  I've tried
> everything.   Perhaps there's a bug in the networking code somewhere?
> 
> The lack of response here suggests that it's time to fire up Linux/ipfwadm.
> At least that worked.

Either that or people are tired of answering the same questions :-/  
I can't claim to have read any of the previous messages in this 
thread, but from the looks of the quoted text, not many details were 
supplied - such as the ipfw commands being used, the natd 
invocation and a snippet from the natd log.

> Forrest
> 
> At 09:03 AM 11/24/98 -0800, Dan Busarow wrote:
> >On Tue, 24 Nov 1998, Paul Dekkers wrote:
> >> | Do you have IP forwarding enabled in rc.conf?  What firewall type
> >> | do you have in rc.conf?
> >> 
> >> Yes, however forward_sourceroute=NO, is that wrong?
> >
> >No, that's what you want.
> >
> >> I have no firewall in rc.conf
> >> I have a default policy to enable all trafic, and in rc.local I have my
> >> divert rule...
> >
> >My reading of the man pages suggests that running a firewall is not
> >optional.  You need to run ipfw.  You can set the type to open which
> >enforces your enable all policy.
> >
> >Set firewall_enable to YES and firewall_type to OPEN in rc.conf and
> >move the divert rule from rc.local to rc.firewall (as the first line
> >of the OPEN section).
> >
> >Dan
> >-- 
> > Dan Busarow                                                  949 443 4172
> > Dana Point Communications, Inc.                            dan@dpcsys.com
> > Dana Point, California  83 09 EF 59 E0 11 89 B4   8D 09 DB FD E1 DD 0C 82

-- 
Brian <brian@Awfulhak.org>, <brian@FreeBSD.org>, <brian@OpenBSD.org>
      <http://www.Awfulhak.org>;
Don't _EVER_ lose your sense of humour....



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199811261827.SAA00514>