From owner-freebsd-questions Thu Feb 22 18:25:54 2001 Delivered-To: freebsd-questions@freebsd.org Received: from karon.dynas.se (karon.dynas.se [192.71.43.4]) by hub.freebsd.org (Postfix) with SMTP id 1117037B401 for ; Thu, 22 Feb 2001 18:25:51 -0800 (PST) (envelope-from mikko@dynas.se) Received: (qmail 63798 invoked from network); 23 Feb 2001 02:25:48 -0000 Received: from spirit.sto.dynas.se (HELO spirit.dynas.se) (172.16.1.10) by 172.16.1.1 with SMTP; 23 Feb 2001 02:25:48 -0000 Received: (qmail 12569 invoked from network); 23 Feb 2001 02:25:47 -0000 Received: from explorer.rsa.com (10.81.217.59) by spirit.dynas.se with SMTP; 23 Feb 2001 02:25:47 -0000 Received: (from mikko@localhost) by explorer.rsa.com (8.11.1/8.11.1) id f1N2PhC76511; Thu, 22 Feb 2001 18:25:43 -0800 (PST) (envelope-from mikko) Date: Thu, 22 Feb 2001 18:25:43 -0800 (PST) From: Mikko Tyolajarvi Message-Id: <200102230225.f1N2PhC76511@explorer.rsa.com> To: evilwolf@cyberdude.com Cc: questions@freebsd.org Subject: Re: Ipfw with dial-up Newsgroups: local.freebsd.questions References: <010222131752DZ.06490@weba2.iname.net> X-Newsreader: NN version 6.5.6 (NOV) Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG In local.freebsd.questions you write: >Dear FreeBSD guys- >I have FreeBSD 4.0 that I recently got. I wanted to set up the ipfw firewall included with it and so I went to your tutorials and followed that exactly. Wrap your lines, please. [ Seemingly correct kernel & natd config removed ] [ Ditto lots of hopefully correct firewall rules ] >Now when I reboot, it the startup messages I see something like "interface tun0 doesn't exist". And when I try to connect to the net, I can connect but cant send any packets out or recieve any for that matter. Am I supposed to replace to reference to "tun0" in rc.conf and/or the fwrules with the device name of my modem....? Or what? Got any ideas I could try out? Thanks for your help. Hos do you start "ppp"? The "tun0" interface does not show up until ppp opens it, so in order for this to work you have to start ppp at boot time, for example in "auto" mode. The system should do this if you have "ppp_enable=YES" in /etc/rc.conf. However, does the tutorial really say that you should use natd and ipfw with a dial-up ppp connection? The "ppp" program can do NAT as well as packet filtering. The filtering is less advanced than that of ipfw, but adequate as a basic firewall. Check ppp(8) and /usr/share/examples/ppp/ppp.conf.sample. $.02, /Mikko -- Mikko Työläjärvi_______________________________________mikko@rsasecurity.com RSA Security To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message