I am having trouble setting up a firewall on my FreeBSD machine.  I've
followed the directions in the FreeBSD handbook, as well as several of
their HOWTO's, but with no luck.  Actually, I had this setup working
not more than a month ago, but it is now absolutely NOT working.  The
network I'm trying to setup is pretty simple and is wired like this:
Cable Modem ------ FreeBSD machine ------- laptop

The FreeBSD machine has two network cards, both active.  From the
FreeBSD machine I can get online quite nicely (I'm using it to type
this).  The FreeBSD machine can also ping and ssh to the laptop.  The
laptop can ssh and ping the FreeBSD machine, heck it can access the
BSD machine's NFS shares just fine, but can't get any further than
that.  Here's the relevent networking info:

The Laptop:  IP: 10.1.1.15  Subnet Mask:  255.0.0.0  Router:10.1.1.1
DNS 24.205.192.61

The FreeBSD machine:
1st ethernet card: sis0 (connected to the cablemodem):  IP:  received
through DHCP, Mask: 0xffffff00 DNS: same.
2nd ethernet card: rl0 (connected to laptop w/ crossover cable) IP:
10.1.1.1 Mask:  0xff000000

relevent /etc/rc.conf lines:

gateway_enable="YES"
hostname="my.hostname.com" #not my real hostname obviously
network_interfaces "lo0 sis0 rl0"
ifconfig_sis0="DHCP"
ifconfig_rl0="inet 10.1.1.1 netmask 255.0.0.0"
inetd_enable="YES"
firewall_enable="YES"
firewall_script="/etc/firewall/fwrules"
natd_enable="YES"
natd_interface="sis0"
natd_flags="-dynamic"

relevent /etc/firewall/fwrules lines.  There's only two.  I figure
I'll start w/ a wide open firewall until I get that working at least,
and then narrow down the ruleset

/sbin/ipfw -f flush
/sbin/ipfw add pass all from any to any

As for the kernel options, I assume I have the right options set
because, as I mentioned above, I had this firewall working before I
changed some config file, and I sure as heck didn't recompile my
kernel.

Thanks in advance for any and all help!