From owner-freebsd-questions@FreeBSD.ORG  Thu Oct 31 08:09:47 2013
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTP id 5010D161
 for <freebsd-questions@freebsd.org>; Thu, 31 Oct 2013 08:09:47 +0000 (UTC)
 (envelope-from freebsd-questions@herveybayaustralia.com.au)
Received: from mail.unitedinsong.com.au (mail.unitedinsong.com.au
 [150.101.178.33])
 (using TLSv1 with cipher ADH-CAMELLIA256-SHA (256/256 bits))
 (No client certificate requested)
 by mx1.freebsd.org (Postfix) with ESMTPS id 008EA27D1
 for <freebsd-questions@freebsd.org>; Thu, 31 Oct 2013 08:09:46 +0000 (UTC)
Received: from laptop2.herveybayaustralia.com.au
 (laptop2.herveybayaustralia.com.au [192.168.0.100])
 (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits))
 (No client certificate requested)
 by mail.unitedinsong.com.au (Postfix) with ESMTPSA id E462227357
 for <freebsd-questions@freebsd.org>; Thu, 31 Oct 2013 18:09:37 +1000 (EST)
Message-ID: <52721041.7040705@herveybayaustralia.com.au>
Date: Thu, 31 Oct 2013 18:09:37 +1000
From: Da Rock <freebsd-questions@herveybayaustralia.com.au>
User-Agent: Mozilla/5.0 (X11; FreeBSD amd64;
 rv:17.0) Gecko/20130516 Thunderbird/17.0.6
MIME-Version: 1.0
To: freebsd-questions@freebsd.org
Subject: Re: NAT/ipfw blocking internal traffic
References: <789665157.296.1383076677766.JavaMail.root@phantombsd.org>
In-Reply-To: <789665157.296.1383076677766.JavaMail.root@phantombsd.org>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 31 Oct 2013 08:09:47 -0000

On 10/30/13 05:57, Casey Scott wrote:
> Hello,
>
> My NAT and ipfw ruleset follow almost exactly what is given at http://www.freebsd.org/doc/handbook/firewalls-ipfw.html
>
> The problem I'm encountering is that a portion of my outbound internal traffic is being blocked by ipfw. This is a fresh Freebsd installaion, so I'm kind of at a loss since the config matches the handbook. Any suggestions are appreciated.
>
 From what I have gathered the handbook is getting out of date - 
particularly in this area. Try the IPFW list (they're very helpful and 
rather quick to respond), but try checking the scripts in /etc first. 
Man should be up to date too.

You should find some generic settings such as OPEN, SECURE, etc in the 
scripts /etc. Just set the rc.conf to use those, and season to taste ;)

HTH