Date: Wed, 30 Jul 2003 17:32:29 -0400 From: Rocco Caputo <rcaputo@pobox.com> To: freebsd-net@freebsd.org Subject: Re: pppoe, can't ping tun0, ipfnat ftp proxy "doesn't work" Message-ID: <20030730213229.GA37634@eyrie.homenet> In-Reply-To: <Pine.BSF.4.21.0307301250130.23956-100000@InterJet.elischer.org> References: <20030730191530.GD36116@eyrie.homenet> <Pine.BSF.4.21.0307301250130.23956-100000@InterJet.elischer.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Jul 30, 2003 at 12:51:32PM -0700, Julian Elischer wrote: > > You are complicating things by running both ipfw and ipf. > can you not do just one of them? I'm not sure. The literature I've read so far says neither firewall does traffic shaping AND supports active FTP in a deny-by-default setting. If google's to be believed, the generally accepted solution is to use ipfw2 for DUMMYNET and ipf/ipfnat for firewalling and active FTP proxying. The combination served me well when I was using ppp(8) to drive a serial modem. Now that I've switched to ADSL and PPPoE, things seem subtly broken. I blame the user (myself), but I haven't found a solution after beating on the problem for several days. -- Rocco Caputo - rcaputo@pobox.com - http://poe.perl.org/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030730213229.GA37634>