Date: Wed, 1 Nov 2000 00:27:36 -0800 From: "Crist J . Clark" <cjclark@reflexnet.net> To: Ruslan Ermilov <ru@sunbay.com> Cc: Kenneth Wayne Culver <culverk@wam.umd.edu>, freebsd-questions@FreeBSD.ORG Subject: Re: natd errors. Message-ID: <20001101002735.I75251@149.211.6.64.reflexcom.com> In-Reply-To: <20001101093421.A33449@sunbay.com>; from ru@sunbay.com on Wed, Nov 01, 2000 at 09:34:21AM %2B0200 References: <Pine.GSO.4.21.0010311622130.13404-100000@rac1.wam.umd.edu> <20001101093421.A33449@sunbay.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Nov 01, 2000 at 09:34:21AM +0200, Ruslan Ermilov wrote: > On Tue, Oct 31, 2000 at 04:24:12PM -0500, Kenneth Wayne Culver wrote: > > I just decided to make my firewall rules more strict, so I set my type to > > "simple" in rc.conf... and now I get this error > > Oct 31 16:16:07 culverk natd[139]: failed to write packet back (Permission > > denied) > > > This happens when ipfw blocks packets written back by natd(8). > > > my rules are the same rules as the "simple" specification in rc.firewall. > > > There was a problem with the stock "simple" firewall, which has now been > fixed in 4.1-STABLE (/etc/rc.firewall, rev 1.30.2.5). > > > Could someone tell me how to get rid of this error? > > > Make sure your rc.firewall is rev 1.30.2.5 or higher. Hmmm, I have a 1.30.2.6 file right here and it still looks to me like it does not have a chance of working for your average natd(8) setup. -- Crist J. Clark cjclark@alum.mit.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001101002735.I75251>