Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 15 Dec 2000 21:49:44 -0800
From:      Boris <koester@x-itec.de>
To:        Matthias Heidbrink <mh@cs.tu-berlin.de>
Cc:        freebsd-isdn@FreeBSD.ORG
Subject:   Re: Firewall Problem with i4b 0.90.1 / FreeBSD 4.0 - Sample configuration?
Message-ID:  <30110732334.20001215214944@x-itec.de>
In-Reply-To: <20001215211303.C25371@nicky.cs.tu-berlin.de>
References:  <20001215211303.C25371@nicky.cs.tu-berlin.de>
next in thread | previous in thread | raw e-mail | index | archive | help 
Hello Matthias,

Friday, December 15, 2000, 12:13:04 PM, you wrote:

MH> Hi,

MH> I've got problems with getting  my i4b working together with a
MH> firewall, dynamical 
MH> IP addresses and NAT (Network Address Translation, "IP
MH> Masquerading"). 
MH> If this sounds well-known to some of you: I asked for help
MH> about it half a year 
MH> ago, but was not able to find a solution and gave up that time.

Maybe i can help you.

MH> The problem seems to have to do with the combination of
MH> dynamical IP addresses and NAT.
MH> OK, probably it's not exactly i4b-specific, but I hope to find
MH> someone here who knows how
MH> to handle this problem or has a working sample configuration.

MH> When I start natd in verbose mode and start lynx (Ports 53 and
MH> 80 should be allowed), 
MH> I get the following error message:

MH> --------
MH> Out [UDP]  [UDP] 0.0.0.0:1518 -> 195.88.140.15:53 aliased to  
MH>            [UDP] 0.0.0.0:1518 -> 195.88.140.15:53             
MH> natd: failed to write packet back: Permission denied          
MH> -------

At first, what does "ipfw show" gives you for output if everything is
enabled and if you get the permission denied?

After clearing the rules, we go to step 2, and maybe we need to do a
little tricky to reset the nat-daemon, but details later.

--
Boris [MCSE, CNA]
...................................................................
 X-ITEC : Consulting * Programming * Net-Security * Crypto-Research
........: [PRIVATE ADDRESS:] 
        : Boris Köster eMail koester@x-itec.de http://www.x-itec.de 
        : Grüne 33-57368 Lennestadt Germany Tel: +49 (0)2721 989400
        : 101 % PERFECTION - SECURITY - STABILITY - FUNCTIONALITY 
........:..........................................................




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isdn" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?30110732334.20001215214944>