Any IPFW clues???

2002-12-22 Thread Gary D Kline
People, I'm trying to switch from ipfilter to ipfw. With the former, things work. When I comment out the ipf* lines in /etc/rc.conf and enable the ipfw lines (and reboot) not even ping works. I've tried pining ns1.thought.org and get the No route to host

RE: Any IPFW clues???

2002-12-22 Thread Sean J. Countryman
Perhaps you could post your rules? - Sean -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Gary D Kline Sent: Sunday, December 22, 2002 4:06 PM To: FreeBSD Mailing List Subject: Any IPFW clues??? People, I'm trying to switch from

Re: Any IPFW clues???

2002-12-22 Thread MikeM
On 12/22/2002 at 3:05 PM Gary D Kline wrote: | I'm trying to switch from ipfilter to ipfw. With the former, | things work. When I comment out the ipf* lines in /etc/rc.conf | and enable the ipfw lines (and reboot) not even ping works. | I've tried pining ns1.thought.org

Re: Any IPFW clues???

2002-12-22 Thread Gary D Kline
On Sun, Dec 22, 2002 at 04:14:31PM -0700, Sean J. Countryman wrote: Perhaps you could post your rules? - Sean Sure:: ipfw -f 10 flush ipfw add 100 check-state ipfw add 150 allow tcp from any to any in via dc0 keep-state ipfw add 200 allow udp from any to any in via dc0 keep-state

Re: Any IPFW clues???

2002-12-22 Thread Gary D Kline
On Sun, Dec 22, 2002 at 06:19:12PM -0500, MikeM wrote: On 12/22/2002 at 3:05 PM Gary D Kline wrote: | I'm trying to switch from ipfilter to ipfw. With the former, | things work. When I comment out the ipf* lines in /etc/rc.conf | and enable the ipfw lines (and reboot) not

Re: Any IPFW clues???

2002-12-22 Thread Gary D Kline
On Sun, Dec 22, 2002 at 03:21:13PM -0800, Sarah Woolley wrote: I had this happen to me once. ipfw may be set to deny everything. You'll probably need to make rules allowing whatever traffic you want in and out. Try the man pages. They are useful. :) Thanks; I'm reading the HOWTO

Re: Any IPFW clues???

2002-12-22 Thread Sarah Woolley
do ipfw show to see what's actually in ipfw. Also, I don't think the 10 after -f on the first line should be there, perhaps it's preventing ipfw from actually flushing things. Hope this helps. To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the

Re: Any IPFW clues???

2002-12-22 Thread Gary D Kline
On Sun, Dec 22, 2002 at 03:30:04PM -0800, Sarah Woolley wrote: do ipfw show to see what's actually in ipfw. Also, I don't think the 10 after -f on the first line should be there, perhaps it's preventing ipfw from actually flushing things. Hope this helps. Hm! Let me try that...