From owner-freebsd-questions Thu Oct 24 18:42:41 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A783D37B401 for ; Thu, 24 Oct 2002 18:42:39 -0700 (PDT) Received: from sccrmhc01.attbi.com (sccrmhc01.attbi.com [204.127.202.61]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2904243E4A for ; Thu, 24 Oct 2002 18:42:39 -0700 (PDT) (envelope-from fozekizer@attbi.com) Received: from hume ([12.239.154.32]) by sccrmhc01.attbi.com (InterMail vM.4.01.03.27 201-229-121-127-20010626) with SMTP id <20021025014238.TWMM24829.sccrmhc01.attbi.com@hume>; Fri, 25 Oct 2002 01:42:38 +0000 Message-ID: <002a01c27bc7$48361f10$32040101@hume> From: "Charles Pelletier" To: "Nick Rogness" , "Alan McKay" Cc: References: <20021024191336.F36020-100000@skywalker.rogness.net> Subject: Re: help with webcam through natd + ipfw Date: Thu, 24 Oct 2002 20:38:55 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG question... having never dealt with IPFW and nat, does ipnat.conf need to exist? i wonder this because it seems like a great majority of problems that exist with IPF can be solved by having a correct ipnat.conf. Charles Pelletier Tech. Coordinator St Luke's School ----- Original Message ----- From: "Nick Rogness" To: "Alan McKay" Cc: Sent: Thursday, October 24, 2002 8:16 PM Subject: Re: help with webcam through natd + ipfw > On Thu, 24 Oct 2002, Alan McKay wrote: > > > > > > What does `ipfw -a l` show? > > > > That seems to be the same as "ipfw show", which I used to determine that > > there do not seem to be any 'deny' rules hit. So I cannot really tell > > where those packets are going. I can hit my port 80 from work no > > problem (www.bodensatz.com), but 8080 no deal. So it seems to be going > > through some allow rule, but I'm not sure which. > > > If indeed your internal machine is excepting connections on port > 8080 (can be tested from the firewall box using telnet) then this > sounds like a firewalling problem. Set your firewall type to > OPEN, reboot and see if it works. If it does, then you need to > examine your firewall rules better. > > There is really nothing special about what your doing if the > firewall is correct. > > Also, to help troubleshoot more, I would recommend using ipfw log > statements as well as the natd log option. > > Nick Rogness > - > "Wouldn't it be great if we could answer people with a > kick to the crotch?" -maddox@xmission.com > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message