Date: Thu, 21 Sep 2006 23:25:50 +0200 From: Erik Norgaard <norgaard@locolomo.org> To: =?ISO-8859-1?Q?H=E8rv=E9_Simplice_van_der_Eijk?= <herve_simplice@hotmail.com> Cc: freebsd-questions@freebsd.org Subject: Re: Firewall Message-ID: <4513035E.5080604@locolomo.org> In-Reply-To: <BAY109-F13F65B69FA0A5263CD640F8200@phx.gbl> References: <BAY109-F13F65B69FA0A5263CD640F8200@phx.gbl>
next in thread | previous in thread | raw e-mail | index | archive | help
Hèrvé Simplice van der Eijk wrote: > on 1 machine I set up a freebsd 5.4 server with dhcp, dns, ldap running on > it. > > on an other machine I set up apachy webserver and both are working fine. > > when I'm making an http request on a windows client (internet explore) it > shows my web site. > > but since I install ipfw firewall on my freebsd 5.4 (dhcp, dns ldap server) > my windows client > cant reach my webserver anymore. > > Please can somebody tell me wich port I have to open up in my firewall. You don't only need to open a port, you also need to enable routing, I assume your setup is like this: Client ---- FBSD ---- Apache You need to open port 80 (default) for the destination ip (the Apache host) and enable routing in the kernel: # sysctl net.inet.ip.forwarding=1 set this in /etc/sysctl.conf to enable on reboot. How to do the routing with ipfw I don't know, I use packet filter. Cheers, Erik -- Ph: +34.666334818 web: http://www.locolomo.org X.509 Certificate: http://www.locolomo.org/crt/8D03551FFCE04F0C.crt Key ID: 69:79:B8:2C:E3:8F:E7:BE:5D:C3:C3:B1:74:62:B8:3F:9F:1F:69:B9
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4513035E.5080604>