Date: Fri, 14 Apr 2006 23:22:40 -0500 From: David J Brooks <daeg@houston.rr.com> To: freebsd-questions@freebsd.org Subject: Re: ipfw acting strange Message-ID: <200604142322.40759.daeg@houston.rr.com> In-Reply-To: <200604142314.22809.daeg@houston.rr.com> References: <200604142314.22809.daeg@houston.rr.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Friday 14 April 2006 23:14, David J Brooks wrote: > I'm stumped. > > This afternoon I upgraded the outward facing NIC on my gateway, with a > corresponding device name change from rl0 to fxp1. I have edited rc.conf to > reflect the change and made what I thought were the appropriate changes to > rc.firewall. On bootup the console displays the corrected rule-set loading: > > 00050 divert 8668 ip from any to any via fxp0 err.. type here.. the correct rule refers to fxp1, and that is how it appears at boot time. After login it appears as rl0. > but when I log in and type 'ipfw list' the role shows up as: > > 00050 divert 8668 ip from any to any via rl0 > > As a result, the other machines on the LAN cannot access the internet. > > For the life of me I cannot figure out where the old NIC is being read into > the rule-set. > > Here are the relevant lines from rc.conf: > > firewall_enable="YES" > firewall_type="open" # only temporary. :) > firewall_script="/etc/rc.firewall" # should be default anyway > > gateway_enable="YES" > hostname="fuzzy.home.net" > > ifconfig_fxp1="DHCP" > ifconfig_fxp0="inet 192.168.0.1 netmask 255.255.255.0" > natd_enable="YES" > natd_interface="fxp1" > natd_flags="-dynamic -m" > > David -- Sure God created the world in only six days, but He didn't have an established user-base.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200604142322.40759.daeg>