Re: host name lookup failure under 4.9
I've found finally the problem: I've been using natd without enabling IPDIVERT in the kernel. I gess that was the problem, as everything now works properly. Thnaks for your help On Sun, 14 Nov 2004 09:30:59 -0500, Chuck Swiger [EMAIL PROTECTED] wrote: Emil Khatib wrote: [ ... ] The firewall rules are: pass udp from me to any 53 keep-state pass tcp from me to any 20 keep-state pass tcp from me to any 21 keep-state pass tcp from me to any 80 keep-state So I want to allow DNS, FTP and HTTP. Your rules aren't enough to work right; at the very least, you need a check-state rule to permit return traffic to the connections you approve of via the keep-state keyword. I suggest you examine /etc/rc.firewall carefully and look at the example rulesets there. Also, while you can use IPFW and natd in conjunction with PPP via the tun0 interface, doing so is more complicated than need be since PPP already has firewall and NAT'ing capabilities built-in. Using them directly via your ppp.conf might be easier. -- -Chuck ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
host name lookup failure under 4.9
Hi list, I've recently installed FreeBSD 4.9 and set up ppp to connect to the Internet. Before recompiling the kernel everything went just fine after writing the ip adresses of my primary and secondary nameservers in /etc/resolv.conf. Then I recompiled the kernel and added IPFIREWALL , IPFIREWALL_VERBOSE, IPV6FIREWALL, IPV6FIREWALL_VERBOSE and IPFW2 to GENERIC. I recompiled also libalias and ipfw, so everything worked fine. But when i got online, I couldn't manage to resolve ip adresses. everytime I do ping www.google.com I get Host name lookup failure. It's quite frustrating really... I've checked resolv.conf, host.conf and ppp.conf and everything is correct (or at least, it worked before recompiling). The firewall rules are: pass udp from me to any 53 keep-state pass tcp from me to any 20 keep-state pass tcp from me to any 21 keep-state pass tcp from me to any 80 keep-state So I want to allow DNS, FTP and HTTP. Please help me to escape from Linux! ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: host name lookup failure under 4.9
Emil Khatib wrote: [ ... ] The firewall rules are: pass udp from me to any 53 keep-state pass tcp from me to any 20 keep-state pass tcp from me to any 21 keep-state pass tcp from me to any 80 keep-state So I want to allow DNS, FTP and HTTP. Your rules aren't enough to work right; at the very least, you need a check-state rule to permit return traffic to the connections you approve of via the keep-state keyword. I suggest you examine /etc/rc.firewall carefully and look at the example rulesets there. Also, while you can use IPFW and natd in conjunction with PPP via the tun0 interface, doing so is more complicated than need be since PPP already has firewall and NAT'ing capabilities built-in. Using them directly via your ppp.conf might be easier. -- -Chuck ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]