Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 1 Nov 2000 00:27:36 -0800
From:      "Crist J . Clark" <cjclark@reflexnet.net>
To:        Ruslan Ermilov <ru@sunbay.com>
Cc:        Kenneth Wayne Culver <culverk@wam.umd.edu>, freebsd-questions@FreeBSD.ORG
Subject:   Re: natd errors.
Message-ID:  <20001101002735.I75251@149.211.6.64.reflexcom.com>
In-Reply-To: <20001101093421.A33449@sunbay.com>; from ru@sunbay.com on Wed, Nov 01, 2000 at 09:34:21AM %2B0200
References:  <Pine.GSO.4.21.0010311622130.13404-100000@rac1.wam.umd.edu> <20001101093421.A33449@sunbay.com>

next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Nov 01, 2000 at 09:34:21AM +0200, Ruslan Ermilov wrote:
> On Tue, Oct 31, 2000 at 04:24:12PM -0500, Kenneth Wayne Culver wrote:
> > I just decided to make my firewall rules more strict, so I set my type to
> > "simple" in rc.conf... and now I get this error 
> > Oct 31 16:16:07 culverk natd[139]: failed to write packet back (Permission
> > denied)
> > 
> This happens when ipfw blocks packets written back by natd(8).
> 
> > my rules are the same rules as the "simple" specification in rc.firewall. 
> > 
> There was a problem with the stock "simple" firewall, which has now been
> fixed in 4.1-STABLE (/etc/rc.firewall, rev 1.30.2.5).
> 
> > Could someone tell me how to get rid of this error?
> > 
> Make sure your rc.firewall is rev 1.30.2.5 or higher.

Hmmm, I have a 1.30.2.6 file right here and it still looks to me like
it does not have a chance of working for your average natd(8) setup.
-- 
Crist J. Clark                           cjclark@alum.mit.edu


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001101002735.I75251>