From owner-freebsd-questions Wed Dec 8 7:59:23 1999 Delivered-To: freebsd-questions@freebsd.org Received: from dan.emsphone.com (dan.emsphone.com [199.67.51.101]) by hub.freebsd.org (Postfix) with ESMTP id 6300714C10 for ; Wed, 8 Dec 1999 07:59:20 -0800 (PST) (envelope-from dan@dan.emsphone.com) Received: (from dan@localhost) by dan.emsphone.com (8.9.3/8.9.3) id JAA36480; Wed, 8 Dec 1999 09:58:26 -0600 (CST) (envelope-from dan) Date: Wed, 8 Dec 1999 09:58:26 -0600 From: Dan Nelson To: Leonard Cc: Andrzej Szydlo , questions@FreeBSD.ORG Subject: Re: NATd: tons of "failed to write packet back" errors Message-ID: <19991208095826.A36378@dan.emsphone.com> References: <19991208082817.C20357@gv.edu.pl> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0i In-Reply-To: ; from "Leonard" on Wed Dec 8 01:11:41 GMT 1999 X-OS: FreeBSD 4.0-CURRENT Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG In the last episode (Dec 08), Leonard said: > Yup, all of the rules look fine to me. Here's the output of ipfw show: > > 00100 9069619 5504822826 divert 8668 ip from any to any via rl0 > 00100 4084 12861636 allow ip from any to any via lo0 > 00200 2537 595981 deny ip from any to 127.0.0.0/8 > 65000 17778873 10800924338 allow ip from any to any > 65535 0 0 deny ip from any to any Try changing rule 200 to 'deny log ip from any to 127.0.0.0/8' and see exactly what packets are tripping that rule. -- Dan Nelson dnelson@emsphone.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message