Date: Sun, 8 Jul 2001 22:55:22 -0400 From: "Klik" <klik@unstable.org> To: <freebsd-security@freebsd.org> Subject: ipfw + natd woes Message-ID: <001401c10822$99f27ac0$34df7ad1@unstable.org>
next in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] Hello, I'm having trouble setting up my ipfw firewall with a default rule of deny while using natd.. My setup is as follow: Cablemodem--> nic1--| FreeBSD box |--nic2--> HUB natd flags: -w -s -n nic1 If I remove the 'allow ip from any to any' rule and add bunch of permit statements for DNS, HTTP, IRC, etc.. The packets will only go to the FreeBSD machine. None of the machines on the local network are able to access the outside world. I've read the past threads about ipfw and natd, the natd and ipfw man pages ...I'm about to pull my hair out Any help would be greatly appreciated Greg [-- Attachment #2 --] <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META http-equiv=Content-Type content="text/html; charset=iso-8859-1"> <META content="MSHTML 5.50.4207.2601" name=GENERATOR> <STYLE></STYLE> </HEAD> <BODY bgColor=#ffffff> <DIV><FONT face=Arial size=2>Hello,</FONT></DIV> <DIV><FONT face=Arial size=2></FONT> </DIV> <DIV><FONT face=Arial size=2>I'm having trouble setting up my ipfw firewall with a default rule of deny while using natd.. My setup is as follow:</FONT></DIV> <DIV><FONT face=Arial size=2></FONT> </DIV> <DIV><FONT face=Arial size=2>Cablemodem--> nic1--| FreeBSD box |--nic2--> HUB</FONT></DIV> <DIV><FONT face=Arial size=2></FONT> </DIV> <DIV><FONT face=Arial size=2>natd flags: -w -s -n nic1</FONT></DIV> <DIV><FONT face=Arial size=2></FONT> </DIV> <DIV><FONT face=Arial size=2>If I remove the 'allow ip from any to any' rule and add bunch of permit statements for DNS, HTTP, IRC, etc.. The packets will only go to the FreeBSD machine. N</FONT><FONT face=Arial size=2>one of the machines on the local network are able to access the outside world. I've read the past threads about ipfw and natd, the natd and ipfw man pages ...I'm about to pull my hair out</FONT></DIV> <DIV><FONT face=Arial size=2></FONT> </DIV> <DIV><FONT face=Arial size=2>Any help would be greatly <FONT face="Times New Roman" size=3>appreciated</FONT></FONT></DIV> <DIV>Greg</DIV></BODY></HTML>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?001401c10822$99f27ac0$34df7ad1>