Date: Tue, 25 Jul 2000 21:40:11 +0100 From: Ben Smithurst <ben@FreeBSD.org> To: j mckitrick <jcm@FreeBSD-uk.eu.org> Cc: questions@freebsd.org Subject: Re: firewall rules Message-ID: <20000725214011.K28657@strontium.scientia.demon.co.uk> In-Reply-To: <20000725002636.A24999@dogma.freebsd-uk.eu.org> References: <20000725002636.A24999@dogma.freebsd-uk.eu.org>
next in thread | previous in thread | raw e-mail | index | archive | help
j mckitrick wrote: > I followed the article on the freebsd website about writing a firewall for a > dialup connection. I can provide details if anyone wants to see them, but i > can't seem to get licq to punch through. Gaim works, netscape works, telnet > (er, ssh) works fine. But licq dies. > > Message in the log: > natd[92]: failed to write packet back (permission denied) Enable logging on all your firewall rules which reject traffic (deny, unreach, etc), and see what log messages you get. This will probably mean compiling ipfw into the kernel with IPFIREWALL_VERBOSE (I think that's the right name; check LINT), since last time I looked the module wasn't compiled with IPFIREWALL_VERBOSE or whatever by default. > any ideas? I can provide the config files if needed, but they are basically > like the ones in the article. And i didn't want to clog the list with > filler until necessary :) Please do post your rules, it's easier than people finding it on the website, especially when you didn't even bother to provide an exact URL. Plus people like me on dialup lines might not feel like dialling in just to fetch it. -- Ben Smithurst / ben@FreeBSD.org / PGP: 0x99392F7D FreeBSD Documentation Project / To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000725214011.K28657>