Re: clean install 2.9 not passing traffic...

[Justin <krejci@attbi.com>]

You need route instructions. Your box doesn't know which interface to use to 
get to www.openbsd.org(129.128.5.191) so use 
$man route
or
$man routed

you can add route commands to your /etc/hostname.sis0 and /etc/hostname.fxp0 
files too.

If you are going to have shell access to your firewall you probably would 
want to patch your box, at least get OpenSSH 3.1 for the local exploit 
possibility. G'luck

On Wednesday 27 March 2002 12:49 pm, you wrote:
> Here is baffling thing.
>
> I have a OpenBSD 2.9 GENERIC kernel install that is to be my firewall.
>
> I have quadruple checked everything I think I can but for some reason
> the internal card (sis0) will not route the inside traffic out the
> external card (fxp0). or vice versus. I am at a co-lo that has given
> me an external network with a gateway to go through and they also
> gave me another network set of static IPs to use on the inside. I am
> not using the typical NAT 192.168.1.1 stuff. I have internal static
> IPs.
>
> net.inet.ip.forwarding= 1
> ipfilter=YES
>
> and I have the ipf.rules at wide open with pass in all and pass out all.
>
> mygate  is set to my providers gateway.
>
> Shouldn't openBSD automatically route?
>
> What could I be missing?