I know it's something stupid. My solaris box is a router/nat box for my
home lan. 3 nics.
le0 = internet
le1 = lan
le2 = WAP Gateway
All the people can get out from the lan to the network. But the problem
I'm having is, the solaris box itself, cannot get to the internet.
Here are my rules.
# Blocks
block in on le0 all
block in log proto tcp all with short
block in log all with ipopts
block return-rst in quick proto tcp from any to any port = 113 flags S/SA
........ lots of blocks from inbound rfc1918 ips.
## Passes for Inbound
pass in log quick on le0 proto tcp from 207.231.225.8/32 to any port =
22 flags S keep state
keep frags
pass in log quick on le0 proto tcp from 72.1.143.98/32 to any port = 22
flags S keep state ke
ep frags
pass in quick on le1 from any to any keep state
# Outbound
pass out on le0 proto udp from any to any port = domain keep state
# Block outbound
block out on le0 all
block out log quick on le0 from !0/32 to any
........... Bunch of rules that block RF1918 ips from going out
I'm assuming it's the block out on le0 all (my internet connection).
But I tried changing it to a pass, but It still did not work. Any ideas?
I know I'm missing something stupid.
