From owner-freebsd-questions Tue Nov 21 10:17:27 2000 Delivered-To: freebsd-questions@freebsd.org Received: from whale.sunbay.crimea.ua (whale.sunbay.crimea.ua [212.110.138.65]) by hub.freebsd.org (Postfix) with ESMTP id B9E2537B4D7 for ; Tue, 21 Nov 2000 10:17:20 -0800 (PST) Received: (from ru@localhost) by whale.sunbay.crimea.ua (8.11.0/8.11.0) id eALIGrE95786; Tue, 21 Nov 2000 20:16:53 +0200 (EET) (envelope-from ru) Date: Tue, 21 Nov 2000 20:16:53 +0200 From: Ruslan Ermilov To: Roop Nanuwa Cc: Zero Sum , freebsd-questions@FreeBSD.ORG Subject: Re: Natd failed to write packet Message-ID: <20001121201653.A95440@sunbay.com> Mail-Followup-To: Roop Nanuwa , Zero Sum , freebsd-questions@FreeBSD.ORG References: <20001121100346.C44207@sunbay.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from roop@gw.carpoolbc.com on Tue, Nov 21, 2000 at 09:24:39AM -0800 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG If you do not run custom networking code, the ip_output() (which is used to push the packet back into IP flow by writing the packet as outgoing through divert(4) socket) can only return EPERM from the firewall. Not sure if IP Filter causes the same error or not. On Tue, Nov 21, 2000 at 09:24:39AM -0800, Roop Nanuwa wrote: > > Hmm.. this is wierd because my firewall (embarissingly enough) is > wide open.. there's only one rule: > > add allow all from any to any > > Which *shouldn't* (from what I know) block anything at all.. I'm not > sure if your reply still applies then.. but I'll look into the log > keyword.. > > Thanks, > RSN > > On Tue, 21 Nov 2000, Ruslan Ermilov wrote: > > > The "Permission Denied" messages from natd(8) mean that your firewall > > is blocking packets written back by natd(8). Check you ruleset, add > > the "log" keyword to "deny" rules, and see what happens. > > > > On Mon, Nov 20, 2000 at 06:23:28PM -0800, Roop Nanuwa wrote: > > > I keep getting this wierd message on my console: > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message -- Ruslan Ermilov Oracle Developer/DBA, ru@sunbay.com Sunbay Software AG, ru@FreeBSD.org FreeBSD committer, +380.652.512.251 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message