From owner-freebsd-questions Mon Oct 2 12:19:10 2000 Delivered-To: freebsd-questions@freebsd.org Received: from khoral.com (charon.khoral.com [209.75.155.97]) by hub.freebsd.org (Postfix) with ESMTP id 11CCB37B503 for ; Mon, 2 Oct 2000 12:19:04 -0700 (PDT) Received: (from steve@localhost) by khoral.com (8.9.3/8.9.3) id NAA09032; Mon, 2 Oct 2000 13:19:01 -0600 (MDT) From: Steve Jorgensen Message-Id: <200010021919.NAA09032@khoral.com> Subject: ipfw & natd config problems To: questions@freebsd.org Date: Mon, 2 Oct 2000 13:19:01 -0600 (MDT) Cc: salas@khoral.com MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I'm trying to set up a FreeBSD-4.1.1 box as a firewall for my network. We're using ipfw and natd. I've got things pretty much working, but I'm having two problems.. #1: I get lots of messages like: natd[163]: failed to write packet back (Permission denied) I can't figure out why this is happening. #2: Externally, I can get to our webserver using the public address (www.khoral.com). However, internally, I get connection denied whenever I use www.khoral.com, but the internal hostname works fine. Natd is redirecting port 80 on the external interface to the internal web server. Is there anyway to configure this so that the external names for ftp and www work for internal machines? Thanks for any help. Steve -- ----------------------------------------------------------- Steven Jorgensen steve@khoral.com steve@spukhaus.com ------------------------------+---------------------------- Khoral Research Inc. | PHONE: (505) 837-6500 6200 Uptown Blvd, Suite 200 | FAX: (505) 881-3842 Albuquerque, NM 87110 | URL: http://www.khoral.com/ ----------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message