Date: Tue, 28 Mar 2000 12:55:37 -0800 (PST) From: Doug Barton <Doug@gorean.org> To: Erik Russell <erik.russell@sungard.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Trouble with IPFIREWALL Message-ID: <Pine.BSF.4.21.0003281253550.38091-100000@dt051n0b.san.rr.com> In-Reply-To: <852568B0.006674CD.00@scs-mta1.scs.sungard.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 28 Mar 2000, Erik Russell wrote:
>
>
> I have the following options in my kernel:
>
> IPFIREWALL
> IPFIREWALL_VERBOSE
> IPDIVERT
> IPFIREWALL_FORWARD
> IPFIREWALL_DEFAULT_TO_ACCEPT
>
> the following in rc.conf:
>
> firewall_enable="YES"
> firewall_type="open"
>
> the following in rc.firewall:
>
> ipfw -f flush
> ipfw add pass all from any to any
>
> ipfw list states:
>
> 00100 allow ip from any to any
> 65535 deny ip from any to any
>
> Any ideas?
About what? You didn't tells us what problem you're asking
about. :) Assuming that you are asking why the default rule is deny, try
compiling without the IPFIREWALL_FORWARD option. I have all the other
rules in my gateway machine and it does what's expected.
Also, please include the output of uname -a in your reply.
Good luck,
Doug
--
"So, the cows were part of a dream that dreamed itself into
existence? Is that possible?" asked the student incredulously.
The master simply replied, "Mu."
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0003281253550.38091-100000>