From owner-freebsd-hackers Fri Dec 1 15:14:12 2000 Delivered-To: freebsd-hackers@freebsd.org Received: from minerva.springer.cx (cgmd77002.chello.nl [212.83.77.2]) by hub.freebsd.org (Postfix) with SMTP id D419D37B400 for ; Fri, 1 Dec 2000 15:14:07 -0800 (PST) Received: (qmail 9661 invoked from network); 2 Dec 2000 00:11:55 -0000 Received: from aurum.rinkspringer.org (HELO aurum) (172.16.0.2) by minerva.springer.cx with SMTP; 2 Dec 2000 00:11:55 -0000 Message-ID: <000901c05c50$f9a568c0$020010ac@aurum> From: "Rink Springer" To: "Frederik Meerwaldt" , References: Subject: Re: natd bug Date: Sat, 2 Dec 2000 12:14:02 +0100 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6700 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hi, What are your firewall settings? Most likely, it's denying natd packets to pass, you need a special rule for that, like: # ipfw add divert natd all from any to any via isp0 That'll do the trick. --Rink ----- Original Message ----- From: "Frederik Meerwaldt" To: Sent: Thursday, November 30, 2000 8:25 PM Subject: natd bug > Hi there! > > I was just looking why my natd doesnt work, when I discovered the > following bug (?): > > I compiled my kernel with IPDIVERT IPFIREWALL and > IPFIREWALL_DEFAULT_TO_ACCEPT and I set up only one rule: > ipfw add divert natd all from any to any via isp0 > Then I started natd (at boot time): > natd -unregistered_only -dynamic -n isp0 > But when a package arrives (doesn't matter from localhost or another > host), natd gives out a kernel message: > > Nov 30 15:03:06 server natd[195]: failed to write packet back (Permission > denied) > > What does that mean? I started natd from my rc.local, so it runs as root > and it should have all permissions. > > Thanks in advance! > Best Regards, > Freddy > > -- > Geek Code 3.1: GCS s+: a--- C+++ UBOU+++ P-- E--- W++ N w--- V++ PGP- t? 5? tv > > ===================================================================== > Frederik Meerwaldt ICQ: 83045387 Homepage: http://www.freddym.org > Bavaria/Germany OpenVMS and Unix Howtos and much more > FreeBSD, NetBSD, OpenBSD, Tru64, OpenVMS, Ultrix, BeOS, Linux > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-hackers" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message