Date: Fri, 15 Aug 2003 17:36:22 -0700 From: "Mike Maltese" <mike@pcmedx.com> To: <FreeBSD-questions@FreeBSD.org> Cc: geek <geek@netcabo.pt> Subject: Re: Gateway problemas Message-ID: <001201c3638e$6b1f38e0$f4f0a8c0@pcmedx.com> References: <2305CFC39C15AA4896E06E5C91C509EF03743858@VS2.hdi.tvcabo>
next in thread | previous in thread | raw e-mail | index | archive | help
> block in log all > block out log all You don't need these since you used IPFITLER_DEFAULT_BLOCK (per your last message). If you want to log blocked traffic, add block in log quick on ep1 all at the end of your rules for that interface. You may want to try setting all interfaces to pass in/out quick until you achieve connectivity. > hostname="" > ifconfig_rl0="DHCP" > ifconfig_rl1="192.168.0.0" > kern_securelevel_enable="NO" > sendmail_enable="NONE" > sshd_enable="YES" > usbd_enable="YES" > inetd_enable="NO" > portmap_enable="NO" > ipfilter_enable="YES" > ipfilter_rules="/etc/ipf.rules" > ipnat_enable="YES" > ipnat_rules="/etc/ipf.rules" > ipmon_enable="YES" > ipmon_flags="-Dsn" You're missing gateway_enable="YES". Do a sysctl net.inet.ip.forwarding to ensure that this sysctl is indeed set to 1. Then you don't need the entry is sysctl.conf.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?001201c3638e$6b1f38e0$f4f0a8c0>