From owner-freebsd-questions Sat Oct 16 21:31:18 1999 Delivered-To: freebsd-questions@freebsd.org Received: from news.rdc1.tx.home.com (ha2.rdc1.tx.home.com [24.4.0.67]) by hub.freebsd.org (Postfix) with ESMTP id 4E7B0150BC for ; Sat, 16 Oct 1999 21:31:10 -0700 (PDT) (envelope-from pdavis99@home.com) Received: from c41404a ([24.8.17.244]) by news.rdc1.tx.home.com (InterMail v4.01.01.00 201-229-111) with SMTP id <19991017043109.DWTR318.news.rdc1.tx.home.com@c41404a> for ; Sat, 16 Oct 1999 21:31:09 -0700 From: "Paul Davis" To: Subject: IPFW question Date: Sat, 16 Oct 1999 22:31:05 -0600 Message-ID: <000101bf1858$6da0b2e0$1e01a8c0@aurora1.co.home.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook 8.5, Build 4.71.2173.0 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hi there, I've got a little problem that I hope someone could help me with. I'm running 3.3-Stable with ipfw running along with natd, two NIC cards one to the outside world and the other connecting to a hub with a windows98 and a SCO UnixWare 7 box. Firewall type is set to open for right now. The problem I'm having is as soon as I started running ipfw I noticed a HUGH amount of netbios udp packets being broadcast out to port 137 and 138 on subnet 24.6.241.255 (for example there are a couple of other segments I seem to be broadcasting to.) I thought possibly I had some windows networking stuff turned on but I don't have anything installed on the FreeBSD box that uses netbios, I have ports 136-139 turned off in services and inetd.conf. If I disconnect my internal network and reboot FreeBSD it still sends the packets. I tried setting up packet filtering rules to kill out going packet to ports 136-139 but I'm not getting the syntax right or something. The ipfw man page is not quite helpful enough, I can't find much about ipfw in the handbook and the FAQ was less than helpful. Where can I find some good documentation on using ipfw or could some kind soul help me with the syntax to kill packets going out to certain ports? BTW I've tried to just deny all netbios packets but that seems to kill natd. I don't know help....:) Paul Davis To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message