Hi !

I am long time user of FreeBSD and for must updates so far I hadn't had
much to do (maybe option here and option there, but networking never
changes), but after upgrade from 5.1 to 5.3 everything stoped working.
Since I couldn't rebuild kernel (some internal problems), I decided to
delete everything and reinstal from scratch (last time I did this was when
disk crashed, and that was about 5 years ago). But now again nothing works.
I didn't change any configuration files since instalation except, rc.conf,
and copied my firewall.conf and natd.conf...

Even after recompiled I couldn't use network. My FreeBSD is used as server
and also router for my internal network (using NAT).

If I disable firewall, natd is turned down so inside computers can't get to
internet through FreeBSD box, if enabled, then nothing works. It seems like
small trouble in Firewall, but I don't know why. I usually didn't make any
changes to firewall since I am not guru there...


FreeBSD BOX -> dc0: external IP
rl0: internal IP -> Hub

I was using NATD and firewall (I have my own rules for both and everything
worked before), I have compiled IPDIVERT and IPFIREWALL into kernel.

Startup rc.conf:

defaultrouter="xx.xx.5.1" # Set to default gateway (or NO).
firewall_enable="YES" # Set to YES to enable firewall functionality
firewall_type="/etc/firewall.conf" # Firewall type (see /etc/rc.firewall)
gateway_enable="YES" # Set to YES if this host will be a gateway.
hostname="atechnet.dhs.org" # Set this!
ifconfig_dc0="inet xx.xx.5.51 netmask"
ifconfig_lo0="inet netmask"
ifconfig_rl0="inet netmask"
natd_enable="YES" # Enable natd (if firewall_enable ==YES).
natd_flags="-s -u -f /etc/natd.conf"

natd.conf (This is just for redirection of emule ports)
redirect_port tcp 4662
redirect_port udp 4672
redirect_port tcp 4711
redirect_port tcp 5432
redirect_port udp 5432

firewall.conf (this is open firewall with added ports for redirection)
add 00050 set 0 divert 8668 ip from any to any
add 00100 set 0 allow ip from any to any
add 00200 set 0 deny ip from any to
add 00300 set 0 deny ip from to any
add 10000 set 0 allow udp from any 4672 to dst-port 4672
add 10001 set 0 allow tcp from any 4662 to dst-port 4662
add 10002 set 0 allow tcp from any 4711 to dst-port 4711
add 65000 set 0 allow ip from any to any

Please help me, I need to make my server active again, but I can't do that
unless whole network is working...


************************************************** ************************
* Aleksander Rozman - Andy * Fandoms: E2:EA, SAABer, Trekkie, Earthie *
* andy@kksonline.com * Sentinel, BH 90210, True's Trooper, *
* andy@atechnet.dhs.org * Heller's Angel, Questie, Legacy, PO5, *
* Maribor, Slovenia (Europe) * Profiler, Buffy (Slayerete), Pretender *
* ICQ-UIC: 4911125 *********************************************
* PGP key available * http://www.atechnet.dhs.org/~andy/ *
************************************************** ************************

freebsd-questions@freebsd.org mailing list
To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"