Date: Thu, 29 Sep 2005 09:20:15 -0600 From: "Aaron Siegel" <aj@siegel-tech.net> To: freebsd-questions@freebsd.org Subject: Problems with IPF after upgrading from 4.11 to 5.4 Message-ID: <200509290920.16204.aj@siegel-tech.net>
next in thread | raw e-mail | index | archive | help
Hello I am having problems with my gateway after upgrading from 4.11 to 5.4. The firewall rules that worked in 4.11 are not working in 5.4. A am able to access the internet from the gateway but not its clients. The only ruleset I can get to work is the "open" ruleset that is supplied with the distribution. When I use the ruleset that work with 4.11 or the "simple" ruleset (modified to work with my network) the clients can access the gateway but not the internet . My ISP provides a NAT router which does not provide the ability to disable NAT. I have cometed out all the lines that block packets from 192.168.0.0 network. I have compiled the IPFIREWALL and IPDIVERT options into the kernel and I have setup setup rc.conf see bellow. Access to the internet seems slow it takes a long time for a page to download. When performing a ping test the ip address is resolved quickly so I do not think it is DNS. Is there anything that has changed from 4.11 to 5.4 that would cause this problem. Thank You Aaron #Network Configuration hostname="hal.siegel-tech.org" ifconfig_dc0="192.168.0.2" ifconfig_fxp0="192.168.245.1 netmask 255.255.255.0" defaultrouter="192.168.0.1" #Gateway Configurations gateway_enable="YES" firewall_enable="YES" firewall_type="open" natd_enable="YES" natd_interface="dc0"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200509290920.16204.aj>