[ previous ] [ next ] [ threads ]
 From:  Roberto Pereyra <rjpereyra at gualeguaychu dot gov dot ar>
 To:  Wayne Marshall <wcm at guinix dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] accessing netbsd.org from behind m0n0wall
 Date:  Tue, 7 Sep 2004 08:31:19 -0300

Allow fragmented packets in the LAN interface.

Please tell us if works.


On Mon, Sep 06, 2004 at 04:19:35PM -0700, Wayne Marshall wrote:
> I put up m0n0wall 1.1 on soekris net4801.  Now I am unable to
> browse the netbsd.org site for some reason;  I have not yet
> encountered any problems with any other site.
> Tried all of dillo, mozilla, firefox, lynx browsers from both
> OpenBSD (3.5) and FreeBSD (5.2) client workstations.
> The netbsd.org site is not down; I've accessed it from other
> hosts outside the m0n0wall.
> In the logs, return tcp traffic comes back from netbsd.org, but
> without port address, and is blocked by default rule.  I then add
> rules to accept fragged packets; full reboot to reset states;
> still no go.
> Any clues that can help out here?
> Wayne
> -- 
> Wayne Marshall
> wcm at guinix dot com
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch