What is the default firewall setup in 6.2?
Victor Engmark
victor.engmark at gmail.com
Wed Apr 4 12:24:43 UTC 2007
Hi all,
My goal is to set up a Subversion (v1.4, running on Apache 2.2 and available
only through SSL) and SSH server, available to the world. I've managed to
make it work locally; i.e.,
# svn list https://localhost/svn/repos/repository_name<https://localhost/svn/repos/repos_name>
and
# ssh user at localhost
work fine. However, I'm having problems accessing these from other hosts.
My machine is connected to the internet. I'm able to SSH to other machines,
and use the web. Therefore, I believe the problem is that the machine is
discarding packets. However, I can't find any record of the connection
attempts in /var/log (grepping for the host name or IP of the other machine
gives no results, and even ping doesn't work), and it seems that, according
to the FreeBSD handbook chapter 26, there is no firewall installed by
default.
Why would FreeBSD be dropping packets, without recording it, when there are
processes listening on the ports (see below), and no firewall?
# netstat -an | grep 22
gives (among other lines):
tcp4 0 0 *.22 *.* LISTEN
According to
tcpdump port 22
, the packets are arriving at my machine.
/etc/rc.conf contains the following:
hostname=[removed]
ifconfig_bge0=dhcp
keymap="us.dvorak"
linux_enable="YES"
sshd_enable="YES"
usbd_enable="YES"
apache2_enable="YES"
network_interfaces=bge0
I haven't changed anything in /etc/defaults/rc.conf. It contains
firewall_enable="NO"
, which should be enough to avoid having any firewall. In addition,
pf_enable="NO"
and
ipfilter_enable="NO"
are in the defaults, so I'm completely stumped as to what is blocking the
traffic. Is FreeBSD by default dropping any incoming connections (it should
be, but I can't find mention of it in the firewall chapter)?
Any help would be appreciated.
--
Victor Engmark
More information about the freebsd-questions
mailing list