Date: Tue, 4 Apr 2000 23:50:49 -0700 (PDT) From: David Daugherty <doc@wcug.wwu.edu> To: Brent Kearney <brent@kearneys.ca> Cc: FreeBSD Questions <freebsd-questions@FreeBSD.org> Subject: Re: WinVNC and natd Message-ID: <Pine.LNX.3.96.1000404234608.19629A-100000@sloth> In-Reply-To: <20000404215915.C37389@kearneys.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 4 Apr 2000, Brent Kearney wrote:
> In addition to your configuration below, try also adding these
> firewall rules (i.e., add them to your /etc/rc.firewall):
>
> # Allow connections for ip forwarding
> $fwcmd add pass tcp from any to reagan 5802 setup
> $fwcmd add pass udp from any to reagan 5802 setup
> $fwcmd add pass tcp from any to reagan 5902 setup
> $fwcmd add pass udp from any to reagan 5902 setup
./netstart puked on the 'setup' so I took that part out. It still didn't
fix the problem though.
> I'm using a pretty restrictive firewall scheme, instead of "open", so
> I don't know that this will make a difference in your case (it works
> for me though, with additional rules to allow connections to ${oip}
> from the outside, on the specified ports). I'm interested in knowing
> whether this works or not, as many people have asked the same question.
Yeah, I understand that the 4 lines above are kind of pointless when I'm
using the open flag on my firewall. On top of letting everything through
let port 5x02 through also.
Is there a way to debug this and tell where it's trying to route the
packets? I tried tcpdump but since I'm on cable modem I get all kinds of
garbage neighborhood LAN traffic. What should I be looking for if I
tcpdump into a file?
David
doc@wcug.wwu.edu
Washington State Resident
ICQ 21106703
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.LNX.3.96.1000404234608.19629A-100000>