Date: Mon, 22 Jan 2001 23:26:16 -0800 From: "Crist J. Clark" <cjclark@reflexnet.net> To: Trevin Chow <tmchow@sfu.ca> Cc: questions@FreeBSD.ORG Subject: Re: broken NAT and Firewall rule Message-ID: <20010122232616.T10761@rfx-216-196-73-168.users.reflex> In-Reply-To: <Pine.GSO.4.30.0101222225390.22910-100000@fraser.sfu.ca>; from tmchow@sfu.ca on Mon, Jan 22, 2001 at 10:31:13PM -0800 References: <Pine.GSO.4.30.0101222225390.22910-100000@fraser.sfu.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Jan 22, 2001 at 10:31:13PM -0800, Trevin Chow wrote: > I previously wrote to the email list about my problems with NAT > and my firewall rules... in a nutshell NAT doesnt' work =) > > The freeBSD 4.2-Stable box can reach the internet, and is running > sshd and proftd with no problems. > > However, when I connect one of my internal machines to the > internal interfaces on the server, the internet on those > clients doesn't function. > > TO provide more useful logs of `ipfw show`, I zero'd it out first > with `ipfw zero`, then I did a simple request to load up a webpage > in IE 5.5 on the client machine hooked up to my internal interface. > > External Interface = dc0 > Internal interfaces = fxp0 and fxp1 > Connected client onto fxp1 and tried to loadup up yahoo.com > ------------------ [snip] > 65532 14 2968 deny udp from any to any This seems to be your problem. Looks like your DNS is not working. Why don't you log this rule to see exactly what is being denied here. -- Crist J. Clark cjclark@alum.mit.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010122232616.T10761>