From owner-freebsd-questions@FreeBSD.ORG Tue Jul 20 18:16:39 2010 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D079310657A9 for ; Tue, 20 Jul 2010 18:16:39 +0000 (UTC) (envelope-from aiza21@comclark.com) Received: from mail-03.name-services.com (mail-03.name-services.com [69.64.155.195]) by mx1.freebsd.org (Postfix) with ESMTP id 7F6948FC1F for ; Tue, 20 Jul 2010 18:16:38 +0000 (UTC) Received: from [10.0.10.3] ([202.69.172.68]) by mail-03.name-services.com with Microsoft SMTPSVC(6.0.3790.4675); Tue, 20 Jul 2010 11:16:27 -0700 Message-ID: <4C45E7EA.7090403@comclark.com> Date: Wed, 21 Jul 2010 02:16:10 +0800 From: Aiza User-Agent: Thunderbird 2.0.0.17 (Windows/20080914) MIME-Version: 1.0 To: google@alexus.org References: <4C3F91CF.5090206@locolomo.org> <4C419944.8030702@locolomo.org> <4C447F7F.6020308@locolomo.org> <4C45CBA3.9020800@comclark.com> In-Reply-To: Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-OriginalArrivalTime: 20 Jul 2010 18:16:27.0809 (UTC) FILETIME=[ABA30110:01CB2837] X-Sender: fbsd8@a1poweruser.com Cc: freebsd-questions@freebsd.org Subject: Re: ipnat.conf - map and rdr won't work! X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 Jul 2010 18:16:39 -0000 alexus wrote: >> su-3.2# grep ^firewall /etc/rc.conf >> firewall_enable="YES" >> firewall_type="open" >> >> su-3.2# grep ^ip /etc/rc.conf >> ipfilter_enable="YES" >> ipmon_enable="YES" >> ipnat_enable="YES" >> ipnat_flags="-d" >> >> This is not good. >> You are running 2 different firewalls at the same time. >> comment out >> firewall_enable="YES" >> firewall_type="open" >> >> and reboot your system. >> >> > > do you know that for a fact or you just guessing?? > > because first of all it worked before just fine with 2 firewalls > second i disabled firewall, so firewall is no longer an issue > third i have another system just like that that runs 2 firewall and > everything working just fine! > > if you dont know the answer there is no need to throw just any answer > as its pretty clear that this isn't the right answer > Just because 2 firewalls at same time didn't blow up in your face before, sure don't mean they are working correctly. Thats one bad assumption to base debugging on. Jumping in my face, questioning the free advice given, sure makes you look foolish. You should read the handbook firewall section before opening your month and sticking your foot into it. People on this list will stop helping if you turn on them and bit the hand that feeds you. And another thing. Network access for a jail is not controlled by the hosts firewall. You need to look else where for your jail network access solution. If your attitude was not so XXXXXXX, I could have told you the solution, but now go learn it the hard way.