Date: Wed, 21 Oct 1998 09:29:30 +1300 From: "Dan Langille" <junkmale@xtra.co.nz> To: freebsd-questions@FreeBSD.ORG Subject: Re: ipfw and natd confusion Message-ID: <199810202029.JAA25519@cyclops.xtra.co.nz> In-Reply-To: <199810200031.NAA20667@cyclops.xtra.co.nz>
next in thread | previous in thread | raw e-mail | index | archive | help
On 20 Oct 98, at 13:31, Dan Langille wrote: > I'm in the process of setting up ipfw rules within rc.firewall using the > simple model under 2.2.7. I have some questions about two of the rules: > > 00700 deny ip from any to 192.168.0.0/16 via ed0 > > This rule prevents me from connecting to the outside world. For some > reason, it doesn't allow me to, say, connect to my ISP news server. Is > natd screwing up somewhere? I've found that the above rule is part of the standard rules for compling with RFC 1918 which defines which networks should not be routed. So why does that stop all my traffic from getting out? However, if I slight modify the rule, the problem goes away. Is this an ipfw bug? deny ip from any to 192.168.0.0/16 out xmit ed0 Suggestions please. cheers. -- Dan Langille DVL Software Limited The FreeBSD Diary - my [mis]adventures http://www.FreeBSDDiary.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199810202029.JAA25519>