From owner-freebsd-questions Thu Oct 24 20:31:49 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 203CE37B401 for ; Thu, 24 Oct 2002 20:31:47 -0700 (PDT) Received: from skywalker.rogness.net (skywalker.rogness.net [64.251.173.102]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5C1A943E65 for ; Thu, 24 Oct 2002 20:31:46 -0700 (PDT) (envelope-from nick@rogness.net) Received: from skywalker.rogness.net (localhost [127.0.0.1]) by skywalker.rogness.net (8.12.5/8.12.5) with ESMTP id g9P3ZH0H036937; Thu, 24 Oct 2002 21:35:17 -0600 (MDT) (envelope-from nick@rogness.net) Received: from localhost (nick@localhost) by skywalker.rogness.net (8.12.5/8.12.5/Submit) with ESMTP id g9P3ZGkg036934; Thu, 24 Oct 2002 21:35:16 -0600 (MDT) X-Authentication-Warning: skywalker.rogness.net: nick owned process doing -bs Date: Thu, 24 Oct 2002 21:35:15 -0600 (MDT) From: Nick Rogness To: Charles Pelletier Cc: Alan McKay , Subject: Re: help with webcam through natd + ipfw In-Reply-To: <002a01c27bc7$48361f10$32040101@hume> Message-ID: <20021024213350.Y36907-100000@skywalker.rogness.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Thu, 24 Oct 2002, Charles Pelletier wrote: > question... > having never dealt with IPFW and nat, does ipnat.conf need to exist? i > wonder this because it seems like a great majority of problems that > exist with IPF can be solved by having a correct ipnat.conf. No, ipnat.conf doesn't need to exist when using IPFW/NAT. That is for the ipnat/ipfilter system which is a whole different monster. > Charles Pelletier > Tech. Coordinator > St Luke's School > > ----- Original Message ----- > From: "Nick Rogness" > To: "Alan McKay" > Cc: > Sent: Thursday, October 24, 2002 8:16 PM > Subject: Re: help with webcam through natd + ipfw > > > > On Thu, 24 Oct 2002, Alan McKay wrote: > > > > > > > > > What does `ipfw -a l` show? > > > > > > That seems to be the same as "ipfw show", which I used to determine that > > > there do not seem to be any 'deny' rules hit. So I cannot really tell > > > where those packets are going. I can hit my port 80 from work no > > > problem (www.bodensatz.com), but 8080 no deal. So it seems to be going > > > through some allow rule, but I'm not sure which. > > > > > > If indeed your internal machine is excepting connections on port > > 8080 (can be tested from the firewall box using telnet) then this > > sounds like a firewalling problem. Set your firewall type to > > OPEN, reboot and see if it works. If it does, then you need to > > examine your firewall rules better. > > > > There is really nothing special about what your doing if the > > firewall is correct. > > > > Also, to help troubleshoot more, I would recommend using ipfw log > > statements as well as the natd log option. > > > > Nick Rogness > > - > > "Wouldn't it be great if we could answer people with a > > kick to the crotch?" -maddox@xmission.com > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-questions" in the body of the message > > > > > Nick Rogness - "Wouldn't it be great if we could answer people with a kick to the crotch?" -maddox@xmission.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message