From owner-freebsd-questions Thu Nov 26 11:26:16 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA26634 for freebsd-questions-outgoing; Thu, 26 Nov 1998 11:26:16 -0800 (PST) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from awfulhak.org (awfulhak.force9.co.uk [195.166.136.63]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA26536 for ; Thu, 26 Nov 1998 11:26:03 -0800 (PST) (envelope-from brian@Awfulhak.org) Received: from woof.lan.awfulhak.org (woof.lan.Awfulhak.org [172.16.0.7]) by awfulhak.org (8.8.8/8.8.8) with ESMTP id TAA04933; Thu, 26 Nov 1998 19:25:58 GMT (envelope-from brian@Awfulhak.org) Received: from woof.lan.awfulhak.org (localhost [127.0.0.1]) by woof.lan.awfulhak.org (8.9.1/8.9.1) with ESMTP id SAA00514; Thu, 26 Nov 1998 18:27:18 GMT (envelope-from brian@woof.lan.awfulhak.org) Message-Id: <199811261827.SAA00514@woof.lan.awfulhak.org> X-Mailer: exmh version 2.0.2 2/24/98 To: Forrest Aldrich cc: FreeBSD Mailinglist Subject: Re: natd: what's wrong? In-reply-to: Your message of "Tue, 24 Nov 1998 13:07:19 EST." <4.1.19981124130704.00a6e2a0@206.25.93.69> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Thu, 26 Nov 1998 18:27:17 +0000 From: Brian Somers Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG > It works, as long as you don't have any firewall rules. I've tried > everything. Perhaps there's a bug in the networking code somewhere? > > The lack of response here suggests that it's time to fire up Linux/ipfwadm. > At least that worked. Either that or people are tired of answering the same questions :-/ I can't claim to have read any of the previous messages in this thread, but from the looks of the quoted text, not many details were supplied - such as the ipfw commands being used, the natd invocation and a snippet from the natd log. > Forrest > > At 09:03 AM 11/24/98 -0800, Dan Busarow wrote: > >On Tue, 24 Nov 1998, Paul Dekkers wrote: > >> | Do you have IP forwarding enabled in rc.conf? What firewall type > >> | do you have in rc.conf? > >> > >> Yes, however forward_sourceroute=NO, is that wrong? > > > >No, that's what you want. > > > >> I have no firewall in rc.conf > >> I have a default policy to enable all trafic, and in rc.local I have my > >> divert rule... > > > >My reading of the man pages suggests that running a firewall is not > >optional. You need to run ipfw. You can set the type to open which > >enforces your enable all policy. > > > >Set firewall_enable to YES and firewall_type to OPEN in rc.conf and > >move the divert rule from rc.local to rc.firewall (as the first line > >of the OPEN section). > > > >Dan > >-- > > Dan Busarow 949 443 4172 > > Dana Point Communications, Inc. dan@dpcsys.com > > Dana Point, California 83 09 EF 59 E0 11 89 B4 8D 09 DB FD E1 DD 0C 82 -- Brian , , Don't _EVER_ lose your sense of humour.... To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message