Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 2 Jun 2000 09:23:34 +0400
From:      "Konstantin S. Kurianoff" <calman@kaliostro.crimea.com>
To:        <freebsd-questions@FreeBSD.ORG>
Subject:   ipfw: socket: Permission denied.
Message-ID:  <000801bfcc52$b3282380$4700a8c0@kaliostro.crimea.com>
next in thread | raw e-mail | index | archive | help 

[-- Attachment #1 --]
Please help me in my touble.
I had configured a kernel (file /usr/src/sys/i386/conf/MyKernel) with following options in it:

options IPFIREWALL
options IPFIREWALL_VERBOSE
options "IPFIREWALL_VERBOSE=10"
options IPDIVERT
options DUMMYNET

I had make a kernel with these commands: 
config MyKernel
cd ../../compile/MyKernel
make depend
make
make install.

In file /etc/rc.conf i wrote firewall_type="OPEN"
In file /etc/rc.firewall i wrote:
    net="212.3.116.0"
    netmask="255.255.255.252"
    ip="212.3.116.90"
and i have not changed the rules for firewall_type="OPEN" - i used default rules for this section.

When server rebooted it said: "Ipfirewall modules loaded. Ipdivert disabled (?)."
When it red /etc/rc.firewall it said "Rules loaded".

As I saw in rc.firewall the main rule for "OPEN" firewall type is "allow all from any to any". 

So, SENDMAIL said while booting: 
gethostbyaddr (212.3.116.90) : failed(1)
Jun 1 17:15:30 spark mail.local: sendto biff: Permission denied.

When i wish to ping something it says: ping: sendto: Permission denied.
And if i want to tell the server "ipfw add 65534 allow all from any to any" it says:
ipfw: socket: Permission denied.

Please tell me what is a problem? My FreeBSD version is 2.2.8

Thank you, calman@kaliostro.crimea.com

[-- Attachment #2 --]
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META content="text/html; charset=koi8-r" http-equiv=Content-Type>
<META content="MSHTML 5.00.2614.3500" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><FONT face="Arial Cyr" size=2>Please help me in my touble.</FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2>I had configured a kernel (file 
/usr/src/sys/i386/conf/MyKernel) with following options in it:</FONT></DIV>
<DIV>&nbsp;</DIV>
<DIV><FONT face="Arial Cyr" size=2>options IPFIREWALL</FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2>options IPFIREWALL_VERBOSE</FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2>options "IPFIREWALL_VERBOSE=10"</FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2>options IPDIVERT</FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2>options DUMMYNET</FONT></DIV>
<DIV>&nbsp;</DIV>
<DIV><FONT face="Arial Cyr" size=2>I had make a kernel with these commands: 
</FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2>config MyKernel</FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2>cd ../../compile/MyKernel</FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2>make depend</FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2>make</FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2>make install.</FONT></DIV>
<DIV>&nbsp;</DIV>
<DIV><FONT face="Arial Cyr" size=2>In file /etc/rc.conf i wrote 
firewall_type="OPEN"</FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2>In file /etc/rc.firewall i 
wrote:</FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2>&nbsp;&nbsp;&nbsp; 
net="212.3.116.0"</FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2>&nbsp;&nbsp;&nbsp; 
netmask="255.255.255.252"</FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2>&nbsp;&nbsp;&nbsp; 
ip="212.3.116.90"</FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2>and i have not changed the rules for 
firewall_type="OPEN" - i used default rules for this section.</FONT></DIV>
<DIV>&nbsp;</DIV>
<DIV><FONT face="Arial Cyr" size=2>When server rebooted it said: "Ipfirewall 
modules loaded. Ipdivert disabled (?)."</FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2>When it red /etc/rc.firewall it said "Rules 
loaded".</FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2></FONT>&nbsp;</DIV>
<DIV><FONT face="Arial Cyr" size=2>As I saw in rc.firewall the main rule for 
"OPEN" firewall type is "allow all from any to any". </FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2></FONT>&nbsp;</DIV>
<DIV><FONT face="Arial Cyr" size=2>So, SENDMAIL said while booting: 
</FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2>gethostbyaddr (212.3.116.90) : 
failed(1)</FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2>Jun 1 17:15:30 spark mail.local: sendto biff: 
Permission denied.</FONT></DIV>
<DIV>&nbsp;</DIV>
<DIV><FONT face="Arial Cyr" size=2>When i wish to ping something it says: ping: 
sendto: Permission denied.</FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2>And if i want to tell the server "ipfw add 
65534 allow all from any to any" it says:</FONT></DIV>
<DIV><FONT face="Arial Cyr" size=2>ipfw: socket: Permission denied.</FONT></DIV>
<DIV>&nbsp;</DIV>
<DIV><FONT face="Arial Cyr" size=2>Please tell me what is a problem? My FreeBSD 
version is 2.2.8</FONT></DIV>
<DIV>&nbsp;</DIV>
<DIV><FONT face="Arial Cyr" size=2>Thank you, 
calman@kaliostro.crimea.com</FONT></DIV></BODY></HTML>

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?000801bfcc52$b3282380$4700a8c0>