From owner-freebsd-questions Thu Jun 1 23:24:54 2000 Delivered-To: freebsd-questions@freebsd.org Received: from spark.kaliostro.crimea.com (Kaliostro.crimea.com [212.3.116.90]) by hub.freebsd.org (Postfix) with ESMTP id 94B3B37B703 for ; Thu, 1 Jun 2000 23:23:35 -0700 (PDT) (envelope-from calman@kaliostro.crimea.com) Received: from comp900 ([192.168.0.71]) by spark.kaliostro.crimea.com (8.8.8/8.8.8) with SMTP id JAA00368 for ; Fri, 2 Jun 2000 09:23:26 +0300 (EEST) (envelope-from calman@kaliostro.crimea.com) Message-ID: <000801bfcc52$b3282380$4700a8c0@kaliostro.crimea.com> From: "Konstantin S. Kurianoff" To: Subject: ipfw: socket: Permission denied. Date: Fri, 2 Jun 2000 09:23:34 +0400 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0005_01BFCC74.395F9020" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2615.200 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2615.200 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG This is a multi-part message in MIME format. ------=_NextPart_000_0005_01BFCC74.395F9020 Content-Type: text/plain; charset="koi8-r" Content-Transfer-Encoding: quoted-printable Please help me in my touble. I had configured a kernel (file /usr/src/sys/i386/conf/MyKernel) with = following options in it: options IPFIREWALL options IPFIREWALL_VERBOSE options "IPFIREWALL_VERBOSE=3D10" options IPDIVERT options DUMMYNET I had make a kernel with these commands:=20 config MyKernel cd ../../compile/MyKernel make depend make make install. In file /etc/rc.conf i wrote firewall_type=3D"OPEN" In file /etc/rc.firewall i wrote: net=3D"212.3.116.0" netmask=3D"255.255.255.252" ip=3D"212.3.116.90" and i have not changed the rules for firewall_type=3D"OPEN" - i used = default rules for this section. When server rebooted it said: "Ipfirewall modules loaded. Ipdivert = disabled (?)." When it red /etc/rc.firewall it said "Rules loaded". As I saw in rc.firewall the main rule for "OPEN" firewall type is "allow = all from any to any".=20 So, SENDMAIL said while booting:=20 gethostbyaddr (212.3.116.90) : failed(1) Jun 1 17:15:30 spark mail.local: sendto biff: Permission denied. When i wish to ping something it says: ping: sendto: Permission denied. And if i want to tell the server "ipfw add 65534 allow all from any to = any" it says: ipfw: socket: Permission denied. Please tell me what is a problem? My FreeBSD version is 2.2.8 Thank you, calman@kaliostro.crimea.com ------=_NextPart_000_0005_01BFCC74.395F9020 Content-Type: text/html; charset="koi8-r" Content-Transfer-Encoding: quoted-printable
Please help me in my = touble.
I had configured a kernel (file=20 /usr/src/sys/i386/conf/MyKernel) with following options in = it:
 
options IPFIREWALL
options = IPFIREWALL_VERBOSE
options = "IPFIREWALL_VERBOSE=3D10"
options IPDIVERT
options DUMMYNET
 
I had make a kernel with these = commands:=20
config MyKernel
cd = ../../compile/MyKernel
make depend
make
make install.
 
In file /etc/rc.conf i wrote=20 firewall_type=3D"OPEN"
In file /etc/rc.firewall i=20 wrote:
   =20 net=3D"212.3.116.0"
   =20 netmask=3D"255.255.255.252"
   =20 ip=3D"212.3.116.90"
and i have not changed the rules = for=20 firewall_type=3D"OPEN" - i used default rules for this = section.
 
When server rebooted it said: = "Ipfirewall=20 modules loaded. Ipdivert disabled (?)."
When it red /etc/rc.firewall it = said "Rules=20 loaded".
 
As I saw in rc.firewall the main = rule for=20 "OPEN" firewall type is "allow all from any to any".
 
So, SENDMAIL said while booting:=20
gethostbyaddr (212.3.116.90) :=20 failed(1)
Jun 1 17:15:30 spark mail.local: = sendto biff:=20 Permission denied.
 
When i wish to ping something it = says: ping:=20 sendto: Permission denied.
And if i want to tell the server = "ipfw add=20 65534 allow all from any to any" it says:
ipfw: socket: Permission = denied.
 
Please tell me what is a problem? = My FreeBSD=20 version is 2.2.8
 
Thank you,=20 calman@kaliostro.crimea.com
------=_NextPart_000_0005_01BFCC74.395F9020-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message