Date: Tue, 3 Oct 2000 08:13:58 -0400 From: "Eli Stair" <estair@computer-exchange.com> To: <freebsd-questions@freebsd.org> Subject: NATD,IPFW error: "Failed to write packet back:Permission denied" Message-ID: <200010030813.AA28639426@computer-exchange.com>
next in thread | raw e-mail | index | archive | help
======================================================================== Hello all! Here's my situation: I've got a machine running FBSD 4.1 with 2 NIC's, identical 3c905's, compiled kernel with IPFIREWALL, IPDIVERT, firewall set to open by default. xl0, private interface uses 192.168.0.1, is working ok. xl1, public interface configured via DHCP, connected to cable modem, works too. System boots with no errors. However, I cannot ping the outside world from any of my internal machines, "host not found". In addition, I cannot ping localhost. When I issue "ping localhost", I receive "%time%SHRIKE natd[%pid%]:failed to write packet back (Permission Denied)" Dumb question is does this have to be configured for IPFW/NATD to work. If so is there any way I can pass parameters to this from DHCLIENT at boot time, as the "oip" is going to change frequently since have (*yuck*) 3-way cable with telephone. >>>Snip from rc.firewall # set these to your outside interface network and netmask and ip oif="xl1" onet="24.216.250.0" omask="255.255.255.128" oip="" #I have set these to what is given as output from DHCLIENT on boot. Basically I just want make sure the internal network has internet access, if I can disable any IPFW rules etc. so that works I will, I'll tighten up security later. My pre-emptive thanks to anyone who can shed light on this, or point my nose in the right direction. Right now I just don't know what the next step would be. I'm semi-familiar with UNIX, use linux on another box, etc. If more info is needed, full rc.firewall etc, I can get it for you. Thanks! ;-} /eli >>>> Here is a clip from rc.conf, just to give you info on what everything is set to. network_interfaces="xl0 xl1" ifconfig_xl0="inet 192.168.0.1 netmask 255.255.255.0" ifconfig_xl1="DHCP" firewall_enable="YES" firewall_script="/etc/rc.firewall" firewall_type="OPEN" firewall_quiet="NO" firewall_flags="" natd_program="/sbin/natd" natd_enable="YES" natd_interface="xl1" natd_flags="-dynamic" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200010030813.AA28639426>