Re: [m0n0wall] accessing netbsd.org from behind m0n0wall

From:	Roberto Pereyra <rjpereyra at gualeguaychu dot gov dot ar>
To:	Wayne Marshall <wcm at guinix dot com>
Cc:	m0n0wall at lists dot m0n0 dot ch
Subject:	Re: [m0n0wall] accessing netbsd.org from behind m0n0wall
Date:	Tue, 7 Sep 2004 08:31:19 -0300

Hi

Allow fragmented packets in the LAN interface.

Please tell us if works.

roberto





On Mon, Sep 06, 2004 at 04:19:35PM -0700, Wayne Marshall wrote:
> I put up m0n0wall 1.1 on soekris net4801.  Now I am unable to
> browse the netbsd.org site for some reason;  I have not yet
> encountered any problems with any other site.
> 
> Tried all of dillo, mozilla, firefox, lynx browsers from both
> OpenBSD (3.5) and FreeBSD (5.2) client workstations.
> 
> The netbsd.org site is not down; I've accessed it from other
> hosts outside the m0n0wall.
> 
> In the logs, return tcp traffic comes back from netbsd.org, but
> without port address, and is blocked by default rule.  I then add
> rules to accept fragged packets; full reboot to reset states;
> still no go.
> 
> Any clues that can help out here?
> 
> Wayne
> 
> -- 
> Wayne Marshall
> wcm at guinix dot com
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>