From owner-freebsd-ipfw@FreeBSD.ORG Sun Jan 18 08:20:48 2004 Return-Path: Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 51BA816A4CE for ; Sun, 18 Jan 2004 08:20:48 -0800 (PST) Received: from mx1.subnetmask.net (mx1.subnetmask.net [207.44.145.31]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7F54A43D3F for ; Sun, 18 Jan 2004 08:20:46 -0800 (PST) (envelope-from mcgehrin@reverse.net) Received: from localhost (mx1.subnetmask.net [207.44.145.31]) by mx1.subnetmask.net (Postfix) with ESMTP id 95F97F3982 for ; Sun, 18 Jan 2004 11:20:43 -0500 (EST) Received: by localhost (Postfix, from userid 1012) id 6379E6484; Sun, 18 Jan 2004 11:20:44 -0500 (EST) Received: from orange (unknown [192.168.0.175]) by localhost (Postfix) with SMTP id 2A3EF6482 for ; Sun, 18 Jan 2004 11:20:41 -0500 (EST) Message-ID: <002301c3dddf$03a3fc70$af00a8c0@orange> From: "Matthew McGehrin" To: References: <000901c3ddd1$9abb5ee0$32fea8c0@presidio> Date: Sun, 18 Jan 2004 11:20:40 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1158 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 X-Spam-Checker-Version: SpamAssassin 2.62 (2004-01-11) X-Spam-Status: No, hits=-4.0 required=4.0 tests=BAYES_00 autolearn=ham version=2.62 X-Spam-Level: Subject: Re: ipfw rule for aliased ip virtual hosts X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 18 Jan 2004 16:20:48 -0000 1. How are you adding aliases? using /etc/rc.conf or direct? Using rc.conf, the format is: ifconfig_rl0_alias0="inet 192.168.2.3 netmask 255.255.255.255" ifconfig_rl0_alias1="inet 192.168.2.4 netmask 255.255.255.255" ifconfig_rl0_alias2="inet 192.168.2.5 netmask 255.255.255.255" Using rc.local the format is: ifconfig rl0 192.168.2.3 netmask 255.255.255.255 alias ifconfig rl0 192.168.2.4 netmask 255.255.255.255 alias ifconfig rl0 192.168.2.5 netmask 255.255.255.255 alias 2. Can you ping or access other services to your vhost ip? i.e.: ping 192.168.2.3 or telnet 192.168.2.3 22 3. Please post the output of 'ipfw list' if your still stuck. Thanks ----- Original Message ----- From: "Greg Robinson" To: Sent: Sunday, January 18, 2004 9:44 AM Subject: ipfw rule for aliased ip virtual hosts > Fxp0 is configured as XX.XX.XX.197, and 198,199 are aliased. > Out of the box rc.firewall "simple" permits the web site configured as > 197 to function yet the others do not. > This box is running named, sendmail, and apache at this point. > Want it to support six web sites all with their own mail and web pages.