Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 20 Mar 2003 12:20:10 -0800 (PST)
From:      "W. J. Williams" <will@willardjwilliams.com>
To:        Henrik Hudson <lists@rhavenn.net>, freebsd-questions@freebsd.org
Subject:   Re: IPFW firewall rules not complete
Message-ID:  <20030320202010.81747.qmail@web13508.mail.yahoo.com>
In-Reply-To: <200303201356.23830.lists@rhavenn.net>

next in thread | previous in thread | raw e-mail | index | archive | help

--- Henrik Hudson <lists@rhavenn.net> wrote:
> 
> > I am experimenting with IPFW firewalls and have hit a roadblock.  I am
> > trying to allow ssh, mail, dns requests, pings and traceroutes out,
> but
> > not in and webmin (port 10000).  I am hitting a roadblock on mail and
> > pings out.  Hope someone can help me...I am new to this and donīt
> > understand firewall rules syntax fully.  I have funded my own lab to
> > experiment with this fun and powerful stuff...
> >
> 
> Did you setup NAT and IPDIVERT in your kernel?
> 
> http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/natd.html
> 
> Even though you have 2 private networks, you still need to run NAT
> accross 
> those subnets or add static routes to your DSL modem, otherwise any
> traffic 
> coming back in from the DSL modem won't know where to go to find the
> fxp1 
> network.
> 
> Check out the handbook, it should work for you.
> 
> -- 
ok, will try that...oddly enough though, mail comes in just fine, just
going out farts...should have put that in the initial email...still think
its NAT related?

Will

=====
Will Williams

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030320202010.81747.qmail>