Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 21 Nov 2000 13:29:30 -0600 (CST)
From:      vcardon@siue.edu
To:        Jeff <jeff@kreska.org>
Cc:        freebsd-questions@freebsd.org
Subject:   Re: help with ipfw
Message-ID:  <200011211929.NAA27864@cougar.isg.siue.edu>
In-Reply-To: <3A1AC159.90903@kreska.org>
References:  <200011211802.MAA24021@cougar.isg.siue.edu> <3A1AC159.90903@kreska.org>
next in thread | previous in thread | raw e-mail | index | archive | help 
I have just tried adding them as suggested. It did not help. BTW, I am running
4.2-RELEASE. I did notice that when I try to ping from the firewall, I get
\"sendto: Permission denied\" errors on the console.

Thanks,
Victor

Quoting Jeff <jeff@kreska.org>:

> Did you update your rfc rules to include the in/out keywords for your
> internal network?
>     # Stop RFC1918 nets on the outside interface
>    ${fwcmd} add deny log all from 10.0.0.0/8 to any via ${oif}
>    ${fwcmd} add deny log all from any to 10.0.0.0/8 out via ${oif}
> -------------------------------------------------------^
>    ${fwcmd} add deny log all from 172.16.0.0/12 to any via ${oif}
>    ${fwcmd} add deny log all from any to 172.16.0.0/12 via ${oif}
>    ${fwcmd} add deny log all from 192.168.0.0/16 to any via ${oif}
>    ${fwcmd} add deny log all from any to 192.168.0.0/16 out via
> ------------------------------------------------------------^
>
> vcardon@siue.edu wrote:
>
> > Hi everyone,
> >
> > I am trying to setup a FreeBSD gateway that will have a firewall running
> as
> > well. The outside interface is connected to a cable modem, and the inside
> > interface goes to my internal LAN. I have followed the how-to at
> > http://www.mostgraveconcern.com/freebsd , and everything works fine,
> untill I
> > switch my firewall from type open to simple.
> >
> > Basically, when I switch to \\\"simple\\\" I lose all network connectivity. I
> cannot
> > even ping out from the gateway.
> >
> > Does anyone have any suggestions as to what I can do to correct this?
> >
> > Thanks,
> > Victor
> >
> >
> > To Unsubscribe: send mail to majordomo@FreeBSD.org
> > with \"unsubscribe freebsd-questions\" in the body of the message
>
>
> 



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200011211929.NAA27864>