From owner-freebsd-questions  Sat May 20 19: 8:14 2000
Delivered-To: freebsd-questions@freebsd.org
Received: from usc.edu (usc.edu [128.125.253.136])
	by hub.freebsd.org (Postfix) with ESMTP id 6849537B7F3
	for <freebsd-questions@FreeBSD.ORG>; Sat, 20 May 2000 19:08:11 -0700 (PDT)
	(envelope-from abdulgha@usc.edu)
Received: from scf-fs.usc.edu (root@scf-fs.usc.edu [128.125.253.183])
	by usc.edu (8.9.3.1/8.9.3/usc) with ESMTP
	id TAA09863; Sat, 20 May 2000 19:08:10 -0700 (PDT)
Received: from phoenix (phoenix@res-3617.usc.edu [128.125.31.111])
	by scf-fs.usc.edu (8.9.3.1/8.9.3/usc) with SMTP
	id TAA18087; Sat, 20 May 2000 19:08:09 -0700 (PDT)
Message-ID: <005501bfc2c9$75f37dd0$6f1f7d80@phoenix>
Reply-To: "Khairuddin Abdul Ghani" <abdulgha@usc.edu>
From: "Khairuddin Abdul Ghani" <abdulgha@usc.edu>
To: <cjclark@home.com>
Cc: <freebsd-questions@FreeBSD.ORG>
References: <003b01bfc2c4$4f094790$6f1f7d80@phoenix> <20000520215922.F93357@cc942873-a.ewndsr1.nj.home.com>
Subject: Re: talkd error: [Error on write to talk daemon : Permission denied (13)]
Date: Sat, 20 May 2000 19:08:30 -0700
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 5.00.2919.6700
X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

----- Original Message -----
From: "Crist J. Clark" <cjc@cc942873-a.ewndsr1.nj.home.com>
To: "Khairuddin Abdul Ghani" <abdulgha@usc.edu>
Cc: <freebsd-questions@FreeBSD.ORG>
Sent: Saturday, May 20, 2000 6:59 PM
Subject: Re: talkd error: [Error on write to talk daemon : Permission denied
(13)]


>     00200 deny ip from any to 127.0.0.0/8

Any legit traffic being blocked by this should be accepted in your
rule 100.

. I know.. Could it possible be all those static routes I added? I kinda did
something like

    route add -host xxx.25.134.3 -interface fxp0

for all the aliased IPs.

> ipfw rules:
> 00100 allow ip from any to any via lo0
> 00200 deny ip from any to 127.0.0.0/8
> 00500 pipe 1 udp from any to any
> 02000 allow tcp from any to 127.0.0.0/8 3306
> 02100 deny tcp from any to any 3306 <-- deny remote sql requests.
> 65000 allow ip from any to any
> 65535 allow ip from any to any

What the heck is 2000?

. That's to allow local connections to sql? I think? :P

> netstat -nr:
> Internet:
> Destination        Gateway            Flags      Netif Expire
> default            216.65.57.1        UGSc       fxp0
> xxx.25.134         link#1             UC         fxp0 =>
> xxx.25.134.1       0:a0:c9:e8:c3:1f   UHLW       fxp0   1114
> xxx.25.134.2       0:90:27:ad:45:5d   UHLS        lo0
> xxx.25.134.3       0:90:27:ad:45:5d   UHLS       fxp0
> .
> .
> yyy.65.57          link#1             UC         fxp0 =>
> yyy.65.57.1        0:a0:c9:e8:c3:1f   UHLW       fxp0   1186
> yyy.65.57.2        0:90:27:ad:45:5d   UHLW        lo0
> yyy.65.57.3        0:90:27:ad:45:5d   UHLS       fxp0
> .
> .
> yyy.65.57.255      ff:ff:ff:ff:ff:ff  UHLWb      fxp0

Where is the loopback configuration in this? There should be a line
like,

  127.0.0.1          127.0.0.1          UH         lo0

What does,

  $ ifconfig lo0

Return?

. that command returns

lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
        inet6 fe80::1%lo0 prefixlen 64 scopeid 0x5
        inet6 ::1 prefixlen 128

Although you're right, there should be something more.. :(




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message