From owner-freebsd-questions Tue Oct 2 6:22:52 2001 Delivered-To: freebsd-questions@freebsd.org Received: from pioneernet.net (mail.pioneernet.net [207.115.64.224]) by hub.freebsd.org (Postfix) with ESMTP id 9FD0D37B407; Tue, 2 Oct 2001 06:22:46 -0700 (PDT) Received: from chip.wiegand.org [66.114.152.128] by pioneernet.net (SMTPD32-6.06) id AFAC903400B6; Tue, 02 Oct 2001 06:22:52 -0700 Content-Type: text/plain; charset="iso-8859-1" From: Chip To: questions@FreeBSD.ORG, Ruslan Ermilov Subject: Re: natd permission denied on bootup Date: Tue, 2 Oct 2001 06:26:18 -0700 X-Mailer: KMail [version 1.2] Cc: freebsd-questions@FreeBSD.ORG References: <01092809261905.96094@chip.wiegand.org> <20011002113009.I74839@sunbay.com> In-Reply-To: <20011002113009.I74839@sunbay.com> MIME-Version: 1.0 Message-Id: <0110020626180E.96094@chip.wiegand.org> Content-Transfer-Encoding: 8bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Tuesday 02 October 2001 01:30, Ruslan Ermilov wrote: > Your firewall is blocking packets. Start from the stock "open" > type firewall, then see what's broken in your config. My rc.conf specifies firewall_type="open", it is in the original message I posted. I do not have the kernel set up to allow all by default, I don't want that, and shouldn't need to do that. The rc.conf should take of it. -- Chip > On Fri, Sep 28, 2001 at 09:26:19AM -0700, Chip wrote: > > I am setting up another machine to replace my currant firewall/natd box. > > I have installed 4.4-release, recompiled the kernel for firewall & > > ipdivert, set up the rc.firewall, natd.conf, rc.conf, resolv.conf files. > > Both nics ping each other and other machines on the inside network, and > > answer to pings from other machines inside the network. > > When the machine boots up I get the following messages: > > > > natd: failed to write packet back (permission denied) > > routed: send bcast sendto(xl0): permission denied > > starting final network daemons: firewall, routed: sendto(dc0): permission > > denied. > > > > Any ideas what's going one here? I have verified all the files with the > > existing firewall box and it's been working fine for a couple years. > > > > I have included the relevant files text below. > > Here's a bit of my dmesg, unfortunately, it didn't go long enough to show > > the errors (the ones mentioned above): > > Cheers, -- -- Chip W. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message