Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Click here to return to the 'Access .Mac web services from behind OpenBSD firewall' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
Access .Mac web services from behind OpenBSD firewall
Authored by: skully dazed on Mar 17, '06 07:44:25AM

I've been using the .mac trial account for the last 45 days or so with no problems whatsoever. I've never had a problem accessing Software Update either.

I've been using OpenBSD on my firewall/nat boxes for years, longer than I've been using OSX. Currently my router at home is obsd 3.8, and at work it's obsd 3.7. Neither have any problem, using static addresses or dhcp. I've been using OSX since 10.1 and so far haven't had any problems running software update ever.

And before you think that I'm doing anything special, my ruleset boils down to scrub in, the nat rule, block in on $ext, pass in on sshd.

So before you claim the problem is with "scrub in" you should make sure it still happens on a fresh install of OSX. If you have a firewire drive (or ipod) install a copy of OSX there and see if that copy has problems. I'd be willing to bet it doesn't.

Also note that packet scrubbing is turned on when you activate NAT, as you can't do NAT without it.



[ Reply to This | # ]