ipfw / natd does not allow lan traffic to reach external numbers
Hi, I have a problem with our firewall/NAT, on a FreeBSD 4.7 box... Here a list with some details: *) The FreeBSD box uses natd and ipfw, and have two external IP:s, lets say aaa.bbb.ccc.20 and ddd.eee.fff.21. *) natd is used to redirect access to external IP addresses and ports to internal LAN IP:s, for example 192.168.0.20 and 192.168.0.21, where for example webservers are located. *) natd rules: natd_flags=-redirect_address 192.168.0.20 aaa.bbb.ccc.20 -redirect_port tcp 192.168.0.21:25-52 25-52 -redirect_port udp 192.168.0.21:25-52 25-52 -redirect_port tcp 192.168.0.30:80 80 -redirect_port udp 192.168.0.30:80 80 -redirect_port tcp 192.168.0.21:54-79 54-79 -redirect_port udp 192.168.0.21:54-79 54-79 -redirect_port tcp 192.168.0.21:81-722 81-722 -redirect_port udp 192.168.0.21:81-722 81-722 -redirect_port tcp 192.168.0.21:3306-4559 3306-4559 -redirect_port udp 192.168.0.21:3306-4559 3306-4559 *) ipfw lets things through: 00050 divert 8668 ip from any to any via fxp0 00100 allow ip from any to any via lo0 00200 deny ip from any to 127.0.0.0/8 00300 deny ip from 127.0.0.0/8 to any 65000 allow ip from any to any 65535 allow ip from any to any Problem: Most things works just fine, external access are redirected to correct ports, and the webservers work just fine. BUT the problem comes when a box on the LAN tries to reach a site residing on 192.168.0.20 using the _external_ IP aaa.bbb.ccc.20. Then I get error: Unable to connect to remote host. Connecting from a LAN machine to the same site using the _internal_ IP works fine. Connecting to other external IPs also works fine. I want to be able to connect from LAN boxes to the external IP:s, for example aaa.bbb.ccc.20. Can anyone lead me on the way...? Very thankful for all comments on this matter. Regards, Smartnet Sverige AB Johannes Angeldorff ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Good way of upgrading from FreeBSD 4.5
Dear FreeBSD:ers, I am happy to use FreeBSD for web, mail and applications serving. But when I come to the question about how to upgrade to a newer FreeBSD version, I really could need your expertise! We have two FreeBSD 4.5 boxes. Both boxes have been installed with FreeBSD 4.5 from CD, and then tweaked with reconfigured kernels and a few applications installed, mainly qmail (replacing sendmail), mod-php, mysql, pico and a few more. Both boxes have around 25 users each. Both boxes have tweaked settings in /etc/rc.conf and some other /etc/-files. My question is, if anyone can give a hint on how to upgrade safely from FreeBSD 4.5 to FreeBSD 5.0...? If we download FreeBSD 5.0 and install it on our FreeBSD 4.5 boxes, what will we have to do? Is there risk that all settings, contents and installed applications will be erased? Very thankful for all help on this matter...! -- Med vänlig hälsning Smartnet Sverige AB Johannes Angeldorff To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Good way of upgrading from FreeBSD 4.5?
Dear FreeBSD:ers, I am happy to use FreeBSD for web, mail and applications serving. But when I come to the question about how to upgrade to a newer FreeBSD version, I really could need your expertise! We have two FreeBSD 4.5 boxes. Both boxes have been installed with FreeBSD 4.5 from CD, and then tweaked with reconfigured kernels and a few applications installed, mainly qmail (replacing sendmail), mod-php, mysql, pico and a few more. Both boxes have around 25 users each. Both boxes have tweaked settings in /etc/rc.conf and some other /etc/-files. My question is, if anyone can give a hint on how to upgrade safely from FreeBSD 4.5 to FreeBSD 5.0...? If we download FreeBSD 5.0 and install it on our FreeBSD 4.5 boxes, what will we have to do? Is there risk that all settings, contents and installed applications will be erased? Very thankful for all help on this matter...! -- Regards, Smartnet Sverige AB Johannes Angeldorff To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Good way of upgrading from FreeBSD 4.5?
Dear FreeBSD:ers, I am happy to use FreeBSD for web, mail and applications serving. But when I come to the question about how to upgrade to a newer FreeBSD version, I really could need your expertise! We have two FreeBSD 4.5 boxes. Both boxes have been installed with FreeBSD 4.5 from CD, and then tweaked with reconfigured kernels and a few applications installed, mainly qmail (replacing sendmail), mod-php, mysql, pico and a few more. Both boxes have around 25 users each. Both boxes have tweaked settings in /etc/rc.conf and some other /etc/-files. My question is, if anyone can give a hint on how to upgrade safely from FreeBSD 4.5 to FreeBSD 5.0...? If we download FreeBSD 5.0 and install it on our FreeBSD 4.5 boxes, what will we have to do? Is there risk that all settings, contents and installed applications will be erased? Very thankful for all help on this matter...! -- Regards, Smartnet Sverige AB Johannes Angeldorff To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Good way of upgrading from FreeBSD 4.5?
Dear FreeBSD:ers, I am happy to use FreeBSD for web, mail and applications serving. But when I come to the question about how to upgrade to a newer FreeBSD version, I really could need your expertise! We have two FreeBSD 4.5 boxes. Both boxes have been installed with FreeBSD 4.5 from CD, and then tweaked with reconfigured kernels and a few applications installed, mainly qmail (replacing sendmail), mod-php, mysql, pico and a few more. Both boxes have around 25 users each. Both boxes have tweaked settings in /etc/rc.conf and some other /etc/-files. My question is, if anyone can give a hint on how to upgrade safely from FreeBSD 4.5 to FreeBSD 5.0...? If we download FreeBSD 5.0 and install it on our FreeBSD 4.5 boxes, what will we have to do? Is there risk that all settings, contents and installed applications will be erased? Very thankful for all help on this matter...! -- Regards, Smartnet Sverige AB Johannes Angeldorff To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
SCP and FTP to FreeBSD problem: Write failed
Hi there, We run a web server with FreeBSD 4.5 and apache. It used to run just fine, and we could both FTP and SCP up files to the server. But now when I try to FTP or SCP files to the server, it accepts most files, but suddenly gives errors at random files... Both in FTP and SCP to the server I get Write failed: Permission denied, mostly at large files (4-5 Mb). The strange thing is that when I try again, I don't get problems with the same file the next time... The disk in the server is not at all full... And the permissions for www-root is 755 (as it have always been), so the permissions seem correct. I am a bit worried that the file system is going to crash or something... Does anyone have any clue what can be wrong - and what I can do about this? Very thankful for all help on this matter! -- Sincerely, Smartnet Sverige AB Johannes Angeldorff To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message