November 2010
today I rewired my network to include a lovely openbsd firewall. Spent most of the day getting the routing, NAT and redirecting working and managed, finally, to reproduce the functionality I had without the firewall. Progress!

One issue: I was directing two static IP addresses into the firewall in the hopes that I could route packets based on the destination IP. I think that was working, but when I initiate connections outbound the packets don't know how to get back, so nothing happens. (cf CO149's Fundamental Dictum Number 1(tm)) or sometimes it works and sometimes not. So, I stopped with the second IP and all works fine. Do I need to maintain two separate NAT tables, perhaps?


My LiveJournal Trick-or-Treat Haul
co149 goes trick-or-treating, dressed up as jesus.
aprilladeville tricks you! You get a 3.5-inch floppy disc.
cetigrrl gives you 8 tan spearmint-flavoured gumdrops.
dc1020 gives you 9 light yellow lemon-flavoured gummy bats.
delores gives you 18 tan licorice-flavoured nuggets.
henry gives you 1 red-orange apple-flavoured pieces of chewing gum.
igorp gives you 7 light green cherry-flavoured gumdrops.
jinx gives you 14 brown evil-flavoured jawbreakers.
lisa gives you 1 orange chocolate-flavoured gumdrops.
sgtred gives you 2 purple grapefruit-flavoured gummy bats.
taylorgirl6 gives you 10 orange strawberry-flavoured pieces of taffy.
co149 ends up with 70 pieces of candy, and a 3.5-inch floppy disc.
Another fun meme brought to you by rfreebern.

War Is a Racket, by Major General Smedley D. Butler, USMC, 1933

General Butler is the recipient of two, count 'em, two Medals of Honor. Every Marine recruit is well educated in Butler's exploits in Mexico and Haiti. He's held up as a paragon. But no Marine recruit is taught that war is a racket. For some reason, this little book wasn't passed out to us in boot camp. It's too bad; if anyone has earned the right to be heard, General Butler has.

