Date: Mon, 25 Apr 2005 17:15:32 +0200 From: peter@bgnett.no (Peter N. M. Hansteen) To: freebsd-questions@freebsd.org Subject: Re: PF problem!!! Message-ID: <867jiqopkb.fsf@amidala.datadok.no> In-Reply-To: <20050425124134.A19F04BEAD@ws1-1.us4.outblaze.com> (Fafa Diliha Romanova's message of "Mon, 25 Apr 2005 07:41:34 -0500") References: <20050425124134.A19F04BEAD@ws1-1.us4.outblaze.com>
next in thread | previous in thread | raw e-mail | index | archive | help
"Fafa Diliha Romanova" <fteg@london.com> writes: > My question is: Why do I have to type this after everytime I've rebooted > to make my NAT gateway server allow Internet access to my workstation? Your rule set does not contain any rules which let packets pass *in* on your internal interface. Remember, pf.conf is seen from the firewall's perspective. traffic passes IN from elsewhere on either interface to the firewall, OUT to elsewhere on either interface. You have rules which let traffic pass in to the firewall on the external interface and out from the firewall on the external interface, but none which let traffic in on the internal interface. -- Peter N. M. Hansteen, member of the first RFC 1149 implementation team http://www.blug.linux.no/rfc1149/ http://www.datadok.no/ http://www.nuug.no/ "First, we kill all the spammers" The Usenet Bard, "Twice-forwarded tales"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?867jiqopkb.fsf>