From owner-freebsd-security Sun Nov 26 11: 8:10 2000 Delivered-To: freebsd-security@freebsd.org Received: from mailhost01.reflexnet.net (mailhost01.reflexnet.net [64.6.192.82]) by hub.freebsd.org (Postfix) with ESMTP id 09C4937B479 for ; Sun, 26 Nov 2000 11:08:05 -0800 (PST) Received: from 149.211.6.64.reflexcom.com ([64.6.211.149]) by mailhost01.reflexnet.net with Microsoft SMTPSVC(5.5.1877.197.19); Sun, 26 Nov 2000 11:06:27 -0800 Received: (from cjc@localhost) by 149.211.6.64.reflexcom.com (8.11.0/8.11.0) id eAQJ7vV51546; Sun, 26 Nov 2000 11:07:57 -0800 (PST) (envelope-from cjc) Date: Sun, 26 Nov 2000 11:07:56 -0800 From: "Crist J . Clark" To: Nuno Teixeira Cc: freebsd-security@FreeBSD.ORG Subject: Re: NATD: failed to write packet back (Permission denied) Message-ID: <20001126110756.C34151@149.211.6.64.reflexcom.com> Reply-To: cjclark@alum.mit.edu References: <001701c057c4$1e1ac010$0200a8c0@n2> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0i In-Reply-To: <001701c057c4$1e1ac010$0200a8c0@n2>; from nuno.teixeira@pt-quorum.com on Sun, Nov 26, 2000 at 04:15:36PM -0000 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sun, Nov 26, 2000 at 04:15:36PM -0000, Nuno Teixeira wrote: > Hello to all, > > I have a dialup firewall working ok ( I follow the FreeBSD Dialup Firewall > example). > > In my fwrule I have a "$fwcmd add 65435 allow icmp from any to any" so I can > have traceroute working. Do you also pass high port (>33434) UDP going out? -- Crist J. Clark cjclark@alum.mit.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message