From owner-freebsd-questions Mon Apr 23 5:54:42 2001 Delivered-To: freebsd-questions@freebsd.org Received: from probity.mcc.ac.uk (probity.mcc.ac.uk [130.88.200.94]) by hub.freebsd.org (Postfix) with ESMTP id A3A0F37B423 for ; Mon, 23 Apr 2001 05:54:39 -0700 (PDT) (envelope-from rasputin@freebsd-uk.eu.org) Received: from dogma.freebsd-uk.eu.org ([130.88.200.97] ident=root) by probity.mcc.ac.uk with esmtp (Exim 2.05 #4) id 14rfrS-000PrO-00; Mon, 23 Apr 2001 13:54:38 +0100 Received: (from rasputin@localhost) by dogma.freebsd-uk.eu.org (8.11.1/8.11.1) id f3NCsaO17568; Mon, 23 Apr 2001 13:54:36 +0100 (BST) (envelope-from rasputin) Date: Mon, 23 Apr 2001 13:54:34 +0100 From: Rasputin To: dotslash Cc: questions@freebsd.org Subject: Re: can't ping localhost Message-ID: <20010423135433.A17513@dogma.freebsd-uk.eu.org> Reply-To: Rasputin References: <01a501c0cbf2$578bfc90$2903010a@atg.altayer.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0.1i In-Reply-To: <01a501c0cbf2$578bfc90$2903010a@atg.altayer.com>; from dotslash@linif.org on Mon, Apr 23, 2001 at 04:38:10PM +0400 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG * dotslash [010423 13:41]: > i have compiled ipfilter in the kernel, applied the ipfilter patch (i'm > using fbsd 4.2-release), rebooted and checked. i can ping, ftp, lynx > remote hosts fine but i can't ping my localhost. the default policy for > ipfilter in my kernel is block all but i've even set a "pass in quick on xl0 > all" and "pass out quick on xl0 all" in /etc/ipf.rules and used it without Man, you're going ot kick yourself.... xl0 isn't the interface connected to the 127.0.0.0 network. add this right at the top of /etc/ipf.rules # free the loopback one! pass in quick on lo0 pass out quick on lo0 then ipf -Fa -f /etc/ipf.rules -- Rasputin :: Jack of All Trades - Master of Nuns :: To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message