View Single Post
Old 25th May 2008
bartman bartman is offline
New User
 
Join Date: May 2008
Posts: 8
Default

Quote:
Originally Posted by s2scott View Post
Code:
# sysctl net.inet.ip.forwarding
net.inet.ip.forwarding=1
, right?
Yes. The box has successfully been acting as a firewall/router for a few weeks now.

I also wanted to point out that the tcpdump is working ok.

tcpdump -eni pflog0
tcpdump: listening on pflog0, link-type PFLOG
06:58:14.499988 rule 39/(match) block in on vr0: 128.97.xx.xx.52314 > 76.91.xx.xx.80: [|tcp] (DF)
06:58:41.566078 rule 39/(match) block in on vr0: 128.97.xx.xx.52316 > 76.91.xx.xx.80: [|tcp] (DF)
06:59:02.872598 rule 39/(match) block in on vr0: 128.97.xx.xx.52317 > 76.91.xx.xx.23: [|tcp] (DF)
06:59:20.535997 rule 39/(match) block in on vr0: 128.97.xx.xx.52318 > 76.91.26.1xx.xx: [|tcp] (DF)

Therefore, I am pretty sure the issue has to do more with ppp rather than firewall issues. Perhaps something I missed in my config.

Lastly, I doubt this matters, but I created extra tun devices.

cd /dev
sh ./MAKEDEV tun5
sh ./MAKEDEV tun6
ect...
Reply With Quote