From owner-freebsd-stable Tue Nov 14 4: 1:14 2000 Delivered-To: freebsd-stable@freebsd.org Received: from osiris.osiricom.co.za (rdg-dial-196-30-234-74.mweb.co.za [196.30.234.74]) by hub.freebsd.org (Postfix) with ESMTP id CE89E37B479 for ; Tue, 14 Nov 2000 04:01:05 -0800 (PST) Received: from osiricom.co.za (boesman [192.168.1.30]) by osiris.osiricom.co.za (8.8.8/SCO5) with ESMTP id NAA05477 for ; Tue, 14 Nov 2000 13:19:41 -0200 (SAT) Message-ID: <3A111F5B.6E7EBDD@osiricom.co.za> Date: Tue, 14 Nov 2000 13:17:48 +0200 From: Wim Olivier Reply-To: wimo@osiricom.co.za Organization: Osiricom Professional Services X-Mailer: Mozilla 4.72 [en] (Win98; I) X-Accept-Language: en MIME-Version: 1.0 To: FreeBSD-stable Subject: IPFW issue on FBSD 4.0-REL Content-Type: multipart/mixed; boundary="------------A112C67C11E54B467C68A1A6" Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG This is a multi-part message in MIME format. --------------A112C67C11E54B467C68A1A6 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Hi everyone, Made some progress now. I set firewall_enable to NO in /etc/rc.conf and reboot the system. When it comes up no ipfw rules are loaded. I then load the following rule: My IPFW fules now look like this: (and it works) - BUT i can only access the Net from the BSD box itself! 65001 2027 133645 allow ip from any to any via any 65535 110 8824 deny ip from any to any No LAN PC's are able to get past the BSD nat nic. -- Kind Regards, Wim Olivier Principal Consultant - UNIX Systems Professional Services (Africa & Middle East) OSIRICOM Holdings (Pty) Ltd. - South Africa Mobile : +27 (0) 82 6553599 http://www.osiricom.co.za Tel : +27 11 802 7415 Fax : +27 11 802 5853 --------------A112C67C11E54B467C68A1A6 Content-Type: text/x-vcard; charset=us-ascii; name="wimo.vcf" Content-Transfer-Encoding: 7bit Content-Description: Card for Wim Olivier Content-Disposition: attachment; filename="wimo.vcf" begin:vcard n:Olivier;Wim tel;cell:+27 (0) 82 655 3599 tel;fax:+27 (0) 11 802 5853 tel;work:+27 (0) 11 802 7415 x-mozilla-html:TRUE url:http://www.osiricom.co.za org:Osiricom Holdings (Pty) Ltd.;Professional Services Division version:2.1 email;internet:wimo@osiricom.co.za title:Principal Consultant adr;quoted-printable:;;16 Ashwood Place=0D=0AMomentum Office Park=0D=0AWoodmead;Johannesburg;Gauteng;;South Africa note;quoted-printable:Osiricom's Professional Services Division is the de facto source=0D=0Afor Professional Services in Africa & the Middle East region.=0D=0A=0D=0AOperating Systems Specilization:=0D=0A=0D=0A * UNIX (all)=0D=0A * IBM AS/400 (including specialized printing solutions)=0D=0A * NT / Win2000=0D=0A * Tarantella & Citrix Server Based (Thin Client) Computing=0D=0A=0D=0AFor more information please e-mail info@osiricom.co.za fn:Wim Olivier end:vcard --------------A112C67C11E54B467C68A1A6-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message