Date: Tue, 24 Nov 1998 11:49:26 -0500 From: Forrest Aldrich <forrie@navinet.net> To: Dan Busarow <dan@dpcsys.com>, Paul Dekkers <psd@cgu.nl> Cc: FreeBSD Mailinglist <freebsd-questions@FreeBSD.ORG> Subject: Re: natd: what's wrong? Message-ID: <4.1.19981124114820.00abc740@206.25.93.69> In-Reply-To: <Pine.BSF.3.96.981124085032.879A-100000@java.dpcsys.com> References: <Pine.BSF.3.96.981124095858.6215A-100000@chippie.cgu>
next in thread | previous in thread | raw e-mail | index | archive | help
It works, as long as you don't have any firewall rules. I've tried everything. Perhaps there's a bug in the networking code somewhere? The lack of response here suggests that it's time to fire up Linux/ipfwadm. At least that worked. Forrest At 09:03 AM 11/24/98 -0800, Dan Busarow wrote: >On Tue, 24 Nov 1998, Paul Dekkers wrote: >> | Do you have IP forwarding enabled in rc.conf? What firewall type >> | do you have in rc.conf? >> >> Yes, however forward_sourceroute=NO, is that wrong? > >No, that's what you want. > >> I have no firewall in rc.conf >> I have a default policy to enable all trafic, and in rc.local I have my >> divert rule... > >My reading of the man pages suggests that running a firewall is not >optional. You need to run ipfw. You can set the type to open which >enforces your enable all policy. > >Set firewall_enable to YES and firewall_type to OPEN in rc.conf and >move the divert rule from rc.local to rc.firewall (as the first line >of the OPEN section). > >Dan >-- > Dan Busarow 949 443 4172 > Dana Point Communications, Inc. dan@dpcsys.com > Dana Point, California 83 09 EF 59 E0 11 89 B4 8D 09 DB FD E1 DD 0C 82 > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4.1.19981124114820.00abc740>