From owner-freebsd-stable@FreeBSD.ORG Wed Mar 9 10:14:36 2011 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A8754106566B for ; Wed, 9 Mar 2011 10:14:36 +0000 (UTC) (envelope-from ml@my.gd) Received: from mail-ww0-f50.google.com (mail-ww0-f50.google.com [74.125.82.50]) by mx1.freebsd.org (Postfix) with ESMTP id 48D238FC13 for ; Wed, 9 Mar 2011 10:14:35 +0000 (UTC) Received: by wwc33 with SMTP id 33so387200wwc.31 for ; Wed, 09 Mar 2011 02:14:35 -0800 (PST) Received: by 10.227.108.105 with SMTP id e41mr5550119wbp.48.1299665675091; Wed, 09 Mar 2011 02:14:35 -0800 (PST) Received: from dfleuriot-at-hi-media.com ([83.167.62.196]) by mx.google.com with ESMTPS id o6sm1340897wbo.9.2011.03.09.02.14.33 (version=SSLv3 cipher=OTHER); Wed, 09 Mar 2011 02:14:34 -0800 (PST) Message-ID: <4D775309.20401@my.gd> Date: Wed, 09 Mar 2011 11:14:33 +0100 From: Damien Fleuriot User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; en-US; rv:1.9.2.13) Gecko/20101207 Thunderbird/3.1.7 MIME-Version: 1.0 To: freebsd-stable@freebsd.org References: In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Subject: Re: Port 80 closed? X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Mar 2011 10:14:36 -0000 On 3/8/11 11:52 PM, Dave Johnson wrote: > Hi all > > > An IPFW problem? > > An help gladly accepted > > It would appear Port 80 closed > > Ports 21 25 443 587 998 work well > > > rc.conf > defaultrouter="192.168.0.1" > gateway_enable="YES" > hostname="xxx.xxx.xxx" > ifconfig_re0="inet 192.168.0.11 netmask 255.255.255.0" > ifconfig_re1="inet 192.168.1.2 netmask 255.255.255.0" > keymap="us.iso" > moused_enable="YES" > sshd_enable="YES" > firewall_enable="YES" > firewall_script="/etc/rc.firewall" > natd_program="/sbin/natd" > natd_enable="YES" > natd_interface="re0" > natd_flags="-f /etc/natd.conf" > dhcpd_enable="NO" > dhcpd_flags="-q" > dhcpd_conf="/usr/local/etc/dhcpd.conf" > dhcpd_ifaces="re1" > dhcpd_withumask="022" > > natd.conf > > interface re0 > use_sockets yes > same_ports yes > log > #redirect_port tcp 192.168.1.189:3389 3389 > #redirect_port tcp 192.168.1.53:5500 5500 > > #!/bin/sh > > /sbin/ipfw -f flush > /sbin/ipfw -f pipe flush > > > > #Nat Rules > /sbin/ipfw add 10 allow ip from 127.0.0.1 to 127.0.0.1 via lo0 > /sbin/ipfw add 30 divert natd all from any to any via re0 > > > #Forward to Transparent Proxy Server > #/sbin/ipfw add 10001 fwd 127.0.0.1,3128 tcp from any to any 80 > #/sbin/ipfw add 10010 fwd 127.0.0.1,3128 tcp from 10.0.21.2 to any 80 > > /sbin/ipfw add 10001 fwd 127.0.0.1,3128 tcp from any to any 80 > > > /sbin/ipfw add 50000 allow ip from any to any > > > Regards > _______________________________________________ > freebsd-stable@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-stable > To unsubscribe, send any mail to "freebsd-stable-unsubscribe@freebsd.org" Hi Dave, First of all, I'd suggest you explain what you're trying to do. >From your IPFW conf I can only guess you're trying to set up a transparent proxy. How do you test to see if the port is open or not ? Is your squid instance running and configured for transparent forwarding with IPFW ?