From owner-freebsd-hackers  Tue Feb  5 15:59:16 2002
Delivered-To: freebsd-hackers@freebsd.org
Received: from smtp6.mindspring.com (smtp6.mindspring.com [207.69.200.110])
	by hub.freebsd.org (Postfix) with ESMTP id 1AD0737B432
	for <freebsd-hackers@freebsd.org>; Tue,  5 Feb 2002 15:59:11 -0800 (PST)
Received: from user-37kaovf.dialup.mindspring.com ([207.69.99.239] helo=mr-p.protolan)
	by smtp6.mindspring.com with esmtp (Exim 3.33 #1)
	id 16YFUS-0006kc-00; Tue, 05 Feb 2002 18:59:08 -0500
Date: Tue, 5 Feb 2002 19:03:26 -0500
From: "Marko" <markovich@mindspring.com>
X-Mailer: The Bat! (v1.53d) Personal
Reply-To: Anikin <markovich@mindspring.com>
X-Priority: 3 (Normal)
Message-ID: <154433028622.20020205190326@mindspring.com>
To: Doug White <dwhite@resnet.uoregon.edu>
Cc: freebsd-hackers@FreeBSD.ORG
Subject: Re[2]: natd UDP errors with PPP demand dial
In-Reply-To: <20020204114052.Q61624-100000@resnet.uoregon.edu>
References: <20020204114052.Q61624-100000@resnet.uoregon.edu>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-hackers.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-hackers>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-hackers>
X-Loop: FreeBSD.ORG

DW> On Sat, 2 Feb 2002, Marko wrote:

>> My  question  is  concerning  the  popular  "netd[pid] failed to write
>> packet back [Permission denied]" message.

DW> This is caused by ipfw blocking packets after natd has translated them.
DW> Check your firewall rules.

DW> It might be an odd race of the rules not getting installed before natd
DW> fires up. Are you using ppp.linkup (or equivalent) to configure ipfw in
DW> this case?

DW> Doug White                    |  FreeBSD: The Power to Serve
DW> dwhite@resnet.uoregon.edu     |  www.FreeBSD.org


Doug, thank you for responding.  I understand the firewall is blocking
the packets.   As  I  mentioned  in  my original message, the firewall should
block  them because the machine is trying to send these packets to the
address it held during the preceding dial-up session for some reason.

I  am  trying to figure out why it needs to do that.  Furthermore, why
would  the machine  need to send them from port 53 when named is not running on
it.

Natd  is already running when a ppp session is set up each time. So is
ipfw.  Ipfw  is  configured thourgh its own configuration file. So, it
seems  I  shouldn't have to set anything extra up in the ppp.linkup.

I am just trying to first figure out why the machine is even trying to
send  those  packets from port 53, among others, to an address it held
during the previous ppp session.

Thanks again, for replying.

Marko


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message