ipfw acting strange
David J Brooks
daeg at houston.rr.com
Sat Apr 15 04:22:43 UTC 2006
On Friday 14 April 2006 23:14, David J Brooks wrote:
> I'm stumped.
>
> This afternoon I upgraded the outward facing NIC on my gateway, with a
> corresponding device name change from rl0 to fxp1. I have edited rc.conf to
> reflect the change and made what I thought were the appropriate changes to
> rc.firewall. On bootup the console displays the corrected rule-set loading:
>
> 00050 divert 8668 ip from any to any via fxp0
err.. type here.. the correct rule refers to fxp1, and that is how it appears
at boot time. After login it appears as rl0.
> but when I log in and type 'ipfw list' the role shows up as:
>
> 00050 divert 8668 ip from any to any via rl0
>
> As a result, the other machines on the LAN cannot access the internet.
>
> For the life of me I cannot figure out where the old NIC is being read into
> the rule-set.
>
> Here are the relevant lines from rc.conf:
>
> firewall_enable="YES"
> firewall_type="open" # only temporary. :)
> firewall_script="/etc/rc.firewall" # should be default anyway
>
> gateway_enable="YES"
> hostname="fuzzy.home.net"
>
> ifconfig_fxp1="DHCP"
> ifconfig_fxp0="inet 192.168.0.1 netmask 255.255.255.0"
> natd_enable="YES"
> natd_interface="fxp1"
> natd_flags="-dynamic -m"
>
> David
--
Sure God created the world in only six days,
but He didn't have an established user-base.
More information about the freebsd-questions
mailing list