On Thu, 22 Feb 2001 13:37:56 +0100, you wrote:
>Hi
>
>I'm having some problems with my network. My outside interface is xl0
>and my interface for my lan is rl0. I use NAT to get my network on
>the net.
>
>When my ipf.rules gets loaded at boottime I get several:
>
>"bad host (xl0)
>can't resolve hostname: xl0"
>
>my ipf.rules is:
>[cut]
>pass in from any to any
>pass out from any to any
>pass out quick on xl0 proto udp from any to any port 21000 >< 21400
>pass out on xl0 proto icmp from any to any keep state
>
>block in log quick on xl0 proto tcp from any to xl0/32 port = 6000
>[cut]
>
I think I've figured out the cause but I still haven't found the
solution. The "bad host/can't resolve" error is being caused by ipf on
the "xl0/32" in the last rule... I'm having the same problem over
here.
Another thing it could be is my NAT rules. My external (internet)
interface is xl0 and my internal LAN interface is xl1.
<ipnat.rules>
map xl0 xl1/24 -> xl0/32 portmap tcp/udp 10000:20000
map xl0 xl1/24 -> xl0/32
</ipnat.rules>
Everything runs perfect if I run
# ipf -Fa -f /etc/ipf.rules
But after booting nothing works and I'm getting the same errors your
are... Something needs to load prior to IPF/NAT that resolves the
device names to their IP addresses but I don't know what that
something is...
Best Regards,
J.C. Roberts
|