Date: Sat, 07 Apr 2001 01:23:12 -0700 From: Trevin Chow <tmchow@sfu.ca> To: Nick Rogness <nick@rogness.net> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Natd - "failed to write packet back" Message-ID: <5.0.2.1.2.20010407012235.02502de0@popserver.sfu.ca> In-Reply-To: <Pine.BSF.4.21.0104070346110.19859-100000@cody.jharris.com> References: <Pine.GSO.4.30.0104070037500.1058-100000@fraser.sfu.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
At 03:49 AM 4/7/2001 -0500, Nick Rogness wrote: > > 65535 2 390 deny ip from any to any > ^^^^^ > Rule 65535 is denying your packets...You are not allowing > valid traffic...which is why you are getting a "permission > denied". I would recommend running a allow log rule before it to > see what valid traffic looks like...then do your filtering after > you know for sure stuff works. I'm not sure what you mean. All my rules above it allow for valid traffic. Isn't the last rule applied as a "last resort" if it hasn't matched anything above? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5.0.2.1.2.20010407012235.02502de0>