pppoe, can't ping tun0, ipfnat ftp proxy "doesn't work"
Rocco Caputo
rcaputo at pobox.com
Wed Jul 30 14:32:32 PDT 2003
On Wed, Jul 30, 2003 at 12:51:32PM -0700, Julian Elischer wrote:
>
> You are complicating things by running both ipfw and ipf.
> can you not do just one of them?
I'm not sure. The literature I've read so far says neither firewall
does traffic shaping AND supports active FTP in a deny-by-default
setting. If google's to be believed, the generally accepted solution is
to use ipfw2 for DUMMYNET and ipf/ipfnat for firewalling and active FTP
proxying.
The combination served me well when I was using ppp(8) to drive a serial
modem. Now that I've switched to ADSL and PPPoE, things seem subtly
broken. I blame the user (myself), but I haven't found a solution after
beating on the problem for several days.
--
Rocco Caputo - rcaputo at pobox.com - http://poe.perl.org/
More information about the freebsd-net
mailing list