Date: Wed, 21 Jul 2010 02:16:10 +0800 From: Aiza <aiza21@comclark.com> To: google@alexus.org Cc: freebsd-questions@freebsd.org Subject: Re: ipnat.conf - map and rdr won't work! Message-ID: <4C45E7EA.7090403@comclark.com> In-Reply-To: <AANLkTileySmaFe4WCud1_MFWXnlHsnNF6DEQUgsmSHE1@mail.gmail.com> References: <AANLkTilVTo36Fzdh2DKAQhRjyDj8MNUuV9dhwvQ7Gf-V@mail.gmail.com> <AANLkTinh0CykJ1Av3f2THPDFOLS0YtYLDvRMHXm_wD3w@mail.gmail.com> <4C3F91CF.5090206@locolomo.org> <AANLkTin6hYyHiG8taifkNHPBtKI0rKOkAaGRYodV1LLC@mail.gmail.com> <4C419944.8030702@locolomo.org> <AANLkTin8H47Z7suztGnWpa8fm-XIagQ6vzlxP85OIT-B@mail.gmail.com> <4C447F7F.6020308@locolomo.org> <AANLkTinM1E2Obrs8VqSsm3S_jcXqbw_Q1YLkc51tgJsS@mail.gmail.com> <4C45CBA3.9020800@comclark.com> <AANLkTileySmaFe4WCud1_MFWXnlHsnNF6DEQUgsmSHE1@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
alexus wrote: >> su-3.2# grep ^firewall /etc/rc.conf >> firewall_enable="YES" >> firewall_type="open" >> >> su-3.2# grep ^ip /etc/rc.conf >> ipfilter_enable="YES" >> ipmon_enable="YES" >> ipnat_enable="YES" >> ipnat_flags="-d" >> >> This is not good. >> You are running 2 different firewalls at the same time. >> comment out >> firewall_enable="YES" >> firewall_type="open" >> >> and reboot your system. >> >> > > do you know that for a fact or you just guessing?? > > because first of all it worked before just fine with 2 firewalls > second i disabled firewall, so firewall is no longer an issue > third i have another system just like that that runs 2 firewall and > everything working just fine! > > if you dont know the answer there is no need to throw just any answer > as its pretty clear that this isn't the right answer > Just because 2 firewalls at same time didn't blow up in your face before, sure don't mean they are working correctly. Thats one bad assumption to base debugging on. Jumping in my face, questioning the free advice given, sure makes you look foolish. You should read the handbook firewall section before opening your month and sticking your foot into it. People on this list will stop helping if you turn on them and bit the hand that feeds you. And another thing. Network access for a jail is not controlled by the hosts firewall. You need to look else where for your jail network access solution. If your attitude was not so XXXXXXX, I could have told you the solution, but now go learn it the hard way.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4C45E7EA.7090403>