Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 09 Nov 2000 18:39:11 +0000
From:      Jason Halbert <res02jw5@gte.net>
To:        questions@freebsd.org
Subject:   Firewall Problem
Message-ID:  <3A0AEF4F.F801EE3@gte.net>
next in thread | raw e-mail | index | archive | help 
FreeBSD:

I'm having a slight problem with my firewall.  I need to be able to
trace route, but I don't think my firewall is allowing the packets
out.

Here is the result of trying to traceroute:

next# traceroute 4.33.96.1
traceroute to 4.33.96.1 (4.33.96.1), 30 hops max, 40 byte packets
traceroute: sendto: Permission denied
 1 traceroute: wrote 4.33.96.1 40 chars, ret=-1


Here is a copy of my firewall rules:

00100 allow ip from 127.0.0.1 to 127.0.0.1
00200 allow tcp from any to any established
00300 allow tcp from any to 4.33.97.170 21-23 setup
00400 allow tcp from 206.46.170.10 to 4.33.97.170 113 setup
00500 allow tcp from 209.254.98.88 to 4.33.97.170 113 setup
00600 allow tcp from 205.133.127.30 to 4.33.97.170 113 setup
00700 allow tcp from 208.51.159.10 to 4.33.97.170 113 setup
00800 allow tcp from any to 4.33.97.170 65000 setup
00900 allow tcp from any to 4.33.97.170 5050 setup
01000 allow icmp from 4.33.97.170 to any icmptype 8
01100 allow icmp from any to 4.33.97.170 icmptype 0
01200 allow tcp from 4.33.97.170 to any out xmit xl0 setup
01300 allow udp from 4.2.2.1 53 to 4.33.97.170 via xl0
01400 allow udp from 4.33.97.170 to 4.2.2.1 via xl0
01500 allow udp from 4.2.2.2 53 to 4.33.97.170 via xl0
01600 allow udp from 4.33.97.170 to 4.2.2.2 via xl0
01700 allow udp from 4.2.2.3 53 to 4.33.97.170 via xl0
01800 allow udp from 4.33.97.170 to 4.2.2.3 via xl0
01900 allow udp from 4.33.97.170 to any 4000
02000 allow udp from any 4000 to 4.33.97.170
65535 deny ip from any to any


My connection is DSL.
Any help you can provide would greatly be appreciated.

Thank You

Jason P. Halbert
Transmitter Engineer
KDAF-TV WB33

res02jw5@gte.net




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3A0AEF4F.F801EE3>