Date: Sun, 27 Aug 2006 02:37:50 +0300 From: Giorgos Keramidas <keramida@ceid.upatras.gr> To: "J.D. Bronson" <jbronson@wixb.com> Cc: freebsd-questions@freebsd.org, Duane Hill <d.hill@yournetplus.com> Subject: Re: ipfilter on 6.1 Message-ID: <20060826233750.GA3300@gothmog.pc> In-Reply-To: <7.0.1.0.2.20060826174612.01982d10@sixcompanies.com> References: <7.0.1.0.2.20060826150124.01982d10@sixcompanies.com> <20060826204015.GI1311@gothmog.pc> <7.0.1.0.2.20060826160530.01982d10@sixcompanies.com> <20060826220706.GC2666@gothmog.pc> <7.0.1.0.2.20060826170941.01982d10@sixcompanies.com> <20060826221904.GD2666@gothmog.pc> <7.0.1.0.2.20060826174612.01982d10@sixcompanies.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2006-08-26 17:48, "J.D. Bronson" <jbronson@wixb.com> wrote: >At 05:19 PM 8/26/2006, Giorgos Keramidas wrote: >> You are implicitly blocking all traffic on the lo0 interface (by the >> modified default policy to "block" all traffic, and missing an >> explicit rule to allow lo0 traffic). >> >> When a system tries to connect to itself, it uses lo0/127.0.0.1 and >> this is not possible with your setup. >> >> I hope this helps a bit, > > Oh geez....I cant believe I forgot lo0. HOW STUPID. > I will edit this and take another look at it. Cool! If this is indeed the fix, let us know :) If you also feel like it and you are not limited by contract or other things, I'd be interested to see how you modified IP Filter to make it use a "block by default" policy. Regards, Giorgos
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060826233750.GA3300>