host name lookup failure under 4.9
Emil Khatib
fenomenoxp2 at gmail.com
Sun Nov 21 00:12:51 GMT 2004
I've found finally the problem: I've been using natd without enabling
IPDIVERT in the kernel. I gess that was the problem, as everything now
works properly. Thnaks for your help
On Sun, 14 Nov 2004 09:30:59 -0500, Chuck Swiger <cswiger at mac.com> wrote:
> Emil Khatib wrote:
> [ ... ]
> > The firewall rules are:
> >
> > pass udp from me to any 53 keep-state
> > pass tcp from me to any 20 keep-state
> > pass tcp from me to any 21 keep-state
> > pass tcp from me to any 80 keep-state
> >
> > So I want to allow DNS, FTP and HTTP.
>
> Your rules aren't enough to work right; at the very least, you need a
> check-state rule to permit return traffic to the connections you approve of
> via the keep-state keyword. I suggest you examine /etc/rc.firewall carefully
> and look at the example rulesets there.
>
> Also, while you can use IPFW and natd in conjunction with PPP via the tun0
> interface, doing so is more complicated than need be since PPP already has
> firewall and NAT'ing capabilities built-in. Using them directly via your
> ppp.conf might be easier.
>
> --
> -Chuck
>
More information about the freebsd-questions
mailing list