Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 26 Jan 2001 11:50:06 -0600
From:      "Huff" <dwhuff@huffstutler.com>
To:        <freebsd-questions@FreeBSD.ORG>
Subject:   Re: Network fails with IPDIVERT IPFIREWALL enabled.
Message-ID:  <015901c087c0$6f1a0260$732da394@celanese.com>
References:  <Pine.BSF.4.10.10101261036180.18331-100000@vuae.pair.com>
next in thread | previous in thread | raw e-mail | index | archive | help 
I had the same problem till I changed the IPFW rule for DIVERT to show 100.
Below are all the IPFW rules that work for me.

00100 divert 8668 ip from any to any via ed0
00100 allow ip from any to any via lo0
00200 deny ip from any to 127.0.0.0/8
65000 allow ip from any to any
65535 deny ip from any to any


Huff.
----- Original Message -----
From: "Stephen Brandi" <melomel@vuae.pair.com>
To: <freebsd-questions@FreeBSD.ORG>
Sent: Friday, January 26, 2001 9:48 AM
Subject: Network fails with IPDIVERT IPFIREWALL enabled.


>
> I have been having a problem that has been baffling me. I have a freebsd
> 4.1 machine running natd and a totally open firewall (temporarily). When I
> boot with kernel.GENERIC networking (local net and cable modem to
> internet) work fine, but no routing happens (as expected). When I boot
> with my custom kernel with options IPDIVERT and IPFIREWALL enabled, I am
> unable to use either network interface. I can't even ping localhost.
> I ran a diff on GENERIC and MYKERNEL and these were the only differences.
>
> Gateway, natd, and firewall are enabled in rc.conf
>
> Does anyone have an idea what could be causing my all networking to
> die with my firewall enabled kernel? I have gotten this working in the
> past, but did a re-install at one point after a hardware failure. I feel
> like I'm forgetting something obvious.
>
> Steve Brandi
>
>
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-questions" in the body of the message
>




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?015901c087c0$6f1a0260$732da394>