From owner-freebsd-questions Fri Jan 26 9:50:32 2001 Delivered-To: freebsd-questions@freebsd.org Received: from phear.huffstutler.com (cm623478-b.ftwrth1.tx.home.com [24.8.250.141]) by hub.freebsd.org (Postfix) with ESMTP id B016F37B400 for ; Fri, 26 Jan 2001 09:50:14 -0800 (PST) Received: from dal0002549 (wearewatching.celanese.com [148.163.165.2]) by phear.huffstutler.com (8.11.1/8.11.1) with SMTP id f0QAoCe12233 for ; Fri, 26 Jan 2001 10:50:13 GMT (envelope-from dwhuff@huffstutler.com) Message-ID: <015901c087c0$6f1a0260$732da394@celanese.com> From: "Huff" To: References: Subject: Re: Network fails with IPDIVERT IPFIREWALL enabled. Date: Fri, 26 Jan 2001 11:50:06 -0600 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I had the same problem till I changed the IPFW rule for DIVERT to show 100. Below are all the IPFW rules that work for me. 00100 divert 8668 ip from any to any via ed0 00100 allow ip from any to any via lo0 00200 deny ip from any to 127.0.0.0/8 65000 allow ip from any to any 65535 deny ip from any to any Huff. ----- Original Message ----- From: "Stephen Brandi" To: Sent: Friday, January 26, 2001 9:48 AM Subject: Network fails with IPDIVERT IPFIREWALL enabled. > > I have been having a problem that has been baffling me. I have a freebsd > 4.1 machine running natd and a totally open firewall (temporarily). When I > boot with kernel.GENERIC networking (local net and cable modem to > internet) work fine, but no routing happens (as expected). When I boot > with my custom kernel with options IPDIVERT and IPFIREWALL enabled, I am > unable to use either network interface. I can't even ping localhost. > I ran a diff on GENERIC and MYKERNEL and these were the only differences. > > Gateway, natd, and firewall are enabled in rc.conf > > Does anyone have an idea what could be causing my all networking to > die with my firewall enabled kernel? I have gotten this working in the > past, but did a re-install at one point after a hardware failure. I feel > like I'm forgetting something obvious. > > Steve Brandi > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message