Guido van Rooij wrote:
If you do not reload the filter rules, but look at what ipfstat says
about rule hits, you might get a clue on where things are blocked
(if at all).
I did that, see below.
I think what happens is that the tun0 device is loaded as kld when
you first run ppp. And in fact
On Thu, Feb 03, 2000 at 09:09:40PM +0100, Arjan de Vet wrote:
In my kernel config I have:
pseudo-device tun # Packet tunnel.
Ah..this is a self cloning device.
Before loading the filter rules, you must make sure the
device is there.
Do something like: dd if=/dev/tun0 count=0
Guido van Rooij wrote:
pseudo-device tun # Packet tunnel.
Ah..this is a self cloning device.
Before loading the filter rules, you must make sure the
device is there.
Do something like: dd if=/dev/tun0 count=0
or something else that opens a device and closes it again without
[Cc'ed to freebsd-current : I earnestly hope you don't mind Arjan]
On Tue, Feb 01, 2000 at 10:25:46PM +0100, Arjan de Vet wrote:
I'm current using a -current of Jan 22.
With user PPP on tun0 and kernel PPP on ppp0 there seem to be no
problems, so far. If something comes up after
On Tue, Feb 01, 2000 at 10:22:42PM +0100, Arjan de Vet wrote:
- fresh reboot, xl0 gets its IP address via DHCP and ipf filter rules
get loaded with a small script:
# flush all rules
ipf -D
# enable ipmon
ipmon -s
# load rules
ipf -f /etc/ipf.conf
# enable
Cy Schubert - ITSD Open Systems Group [EMAIL PROTECTED] writes:
With the impending release of FreeBSD-4.0, is anyone on this list using
IP-Filter on FreeBSD-current? I'm planning to install -current
w/IP-Filter on a testbed and would like to know of there are any
gotchas or if it even
Mike Tancsa wrote:
The only thing I discovered a few days ago is that when I dialin to the
company network I have to unload and reload the filter rules to get ppp
over the tun0 device working. Before starting /usr/sbin/ppp I do a
ifconfig xl0 down to disable the cable modem interface completely.
With the impending release of FreeBSD-4.0, is anyone on this list using
IP-Filter on FreeBSD-current? I'm planning to install -current
w/IP-Filter on a testbed and would like to know of there are any
gotchas or if it even runs on FreeBSD-current.
Regards, Phone:
In article [EMAIL PROTECTED] you write:
With the impending release of FreeBSD-4.0, is anyone on this list using
IP-Filter on FreeBSD-current? I'm planning to install -current
Yep, I'm using it as a stateful packet filtering firewall for my cable
modem connection.
w/IP-Filter on a testbed
On 31 Jan 2000 15:02:52 -0500, in sentex.lists.freebsd.current you wrote:
The only thing I discovered a few days ago is that when I dialin to the
company network I have to unload and reload the filter rules to get ppp
over the tun0 device working. Before starting /usr/sbin/ppp I do a
ifconfig
10 matches
Mail list logo
