For the archives: Found my problem. Te firewall_type option is case sensitive -- and "OPEN" is supposed to be lowercase. Cheerio, SigmaX On 7/28/06, SigmaX asdf <fydernix@gmail.com> wrote:> > I'm trying to setup a gateway/firewall on my network in a similar setup to > that shown in the in the handbook diagram at http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-natd.html > . I've followed what I can figure out, adding the following to my > /etc/rc.conf > > gateway_enable="YES" > firewall_enable="YES" > firewall_type="OPEN" > natd_enabl="YES" > natd_interface="rl0" > > My understanding is that in FreeBSD 6 it's not necessary to recompile a > kernal with IPFIREWALL and IPDIVERT, but appropriate modules will be loaded > automatically. > > That said, the NAT and gateway stuff doesn't seem to be working properly, > leastwise not when I try to connect from my Ubuntu Linux client (See thread > here: http://ubuntuforums.org/showthread.php?t=224843) > > What all am I supposed to do to setup this gateway? > > SigmaX >
SigmaX asdf wrote:> For the archives: > > Found my problem. Te firewall_type option is case sensitive -- and "OPEN" > is supposed to be lowercase.I would find that very surprising, given that as far as I can see, everywhere that the firewall_type variable is parsed it's tested against [Oo][Pp][Ee][Nn]. Can you please verify that if the _only_ thing you change is that variable from "open" to "OPEN" that it doesn't work, and if so, can you please set rc_debug and rc_info to yes in /etc/rc.conf, reboot, and give us an idea where it's breaking? Thanks, Doug -- This .signature sanitized for your protection
On Aug 19, 2006, at 10:58 PM, SigmaX asdf wrote:> Found my problem. T[h]e firewall_type option is case sensitive -- > and "OPEN" > is supposed to be lowercase.The firewall_type option isn't case-sensitive, and hasn't been since early 4.x; see /etc/rc.firewall: case ${firewall_type} in [Oo][Pp][Ee][Nn]) setup_loopback ${fwcmd} add 65000 pass all from any to any ;; -- -Chuck