From owner-freebsd-questions Thu Jun 1 23:45:28 2000 Delivered-To: freebsd-questions@freebsd.org Received: from mail.rdc1.sdca.home.com (ha1.rdc1.sdca.home.com [24.0.3.66]) by hub.freebsd.org (Postfix) with ESMTP id 24AB037B6AE for ; Thu, 1 Jun 2000 23:45:24 -0700 (PDT) (envelope-from RaymundoVega@home.com) Received: from home.com ([24.5.252.61]) by mail.rdc1.sdca.home.com (InterMail vM.4.01.02.00 201-229-116) with ESMTP id <20000602064523.KRPB28251.mail.rdc1.sdca.home.com@home.com>; Thu, 1 Jun 2000 23:45:23 -0700 Message-ID: <39375802.53EACDDB@home.com> Date: Thu, 01 Jun 2000 23:45:22 -0700 From: "Raymundo M. Vega" X-Mailer: Mozilla 4.7 [en] (X11; I; FreeBSD 3.2-RELEASE i386) X-Accept-Language: en MIME-Version: 1.0 To: "Konstantin S. Kurianoff" Cc: freebsd-questions@FreeBSD.ORG Subject: Re: ipfw: socket: Permission denied. References: <000801bfcc52$b3282380$4700a8c0@kaliostro.crimea.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG it means the rule set is broken, start with something very simple and build your ruleset one by one. raymundo > "Konstantin S. Kurianoff" wrote: > > Please help me in my touble. > I had configured a kernel (file /usr/src/sys/i386/conf/MyKernel) with > following options in it: > > options IPFIREWALL > options IPFIREWALL_VERBOSE > options "IPFIREWALL_VERBOSE=10" > options IPDIVERT > options DUMMYNET > > I had make a kernel with these commands: > config MyKernel > cd ../../compile/MyKernel > make depend > make > make install. > > In file /etc/rc.conf i wrote firewall_type="OPEN" > In file /etc/rc.firewall i wrote: > net="212.3.116.0" > netmask="255.255.255.252" > ip="212.3.116.90" > and i have not changed the rules for firewall_type="OPEN" - i used default > rules for this section. > > When server rebooted it said: "Ipfirewall modules loaded. Ipdivert disabled > (?)." > When it red /etc/rc.firewall it said "Rules loaded". > > As I saw in rc.firewall the main rule for "OPEN" firewall type is "allow all > from any to any". > > So, SENDMAIL said while booting: > gethostbyaddr (212.3.116.90) : failed(1) > Jun 1 17:15:30 spark mail.local: sendto biff: Permission denied. > > When i wish to ping something it says: ping: sendto: Permission denied. > And if i want to tell the server "ipfw add 65534 allow all from any to any" it > says: > ipfw: socket: Permission denied. > > Please tell me what is a problem? My FreeBSD version is 2.2.8 > > Thank you, calman@kaliostro.crimea.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message