From owner-freebsd-security  Fri Nov 23  3:58:58 2001
Delivered-To: freebsd-security@freebsd.org
Received: from c7.campus.utcluj.ro (c7.campus.utcluj.ro [193.226.6.226])
	by hub.freebsd.org (Postfix) with SMTP id 638B237B416
	for <freebsd-security@freebsd.org>; Fri, 23 Nov 2001 03:58:52 -0800 (PST)
Received: (qmail 11682 invoked by uid 1008); 23 Nov 2001 11:59:34 -0000
Date: Fri, 23 Nov 2001 13:59:34 +0200
From: veedee@c7.campus.utcluj.ro
To: Peter Ross <petros@pps.de>
Cc: freebsd-security@freebsd.org
Subject: Re: natd: failed to write packet back (Permission denied)
Message-ID: <20011123135934.A11605@c7.campus.utcluj.ro>
References: <200111231146.MAA24434@aprilsonne.pps.de>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <200111231146.MAA24434@aprilsonne.pps.de>; from petros@pps.de on Fri, Nov 23, 2001 at 12:46:04PM +0100
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

On Fri, Nov 23, 2001 at 12:46:04PM +0100, Peter Ross wrote:
> Hi,
> last month I installed a working (AFAIK;-) firewall using FreeBSD 4.4, ipfw 
> and natd.

Have you considered using ipf/ipnat instead? 

> Sometimes I get a message:
> > Nov 22 17:31:25 tor natd[456]: failed to write packet back (Permission 
> > denied)
> > Nov 22 17:31:58 tor last message repeated 6 times
> There are approximately 30 packets per day causing this message.
> I can't find a corresponding message in the ipfw-logs.
> While my firewall continues to work, my former FreeBSD 3.x firewall stopped 
> in this case from time to time.
> Should I be worried? I hope there isn't a mistake in the ipfw rules..

Not really. The messages are caused by physical link problems. I get the
same messages when the link to my ISP fails from time to time (eg. it
disconnects). It has nothing to do whatsoever with the ipfw rules.

> Thanks for advice
> Peter Ross
> 
> *******************************************************
> Dipl.Inf. Peter Ross                Mail: petros@pps.de
> Presse Programm Service Berlin - Systems administration
> *******************************************************


Hope this helps,
Radu Bogdan Rusu (aka veedee)
C7 Campus Network System Administrator

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message