Date: Fri, 10 Nov 2000 02:43:22 -0600 (CST) From: Mike Meyer <mwm@mired.org> To: Zero Sum <count@shalimar.net.au> Cc: questions@freebsd.org Subject: Re: ipfw firewall question Message-ID: <14859.46378.832801.322465@guru.mired.org> In-Reply-To: <108488601@toto.iv>
next in thread | previous in thread | raw e-mail | index | archive | help
Zero Sum <count@shalimar.net.au> types:
> I have the following ipfw firewall rules...
>
> 01100 allow udp from 198.142.161.98 to 203.2.75.132 53 out xmit tun0
*.*
> 01200 allow udp from 198.142.161.98 to 203.2.75.108 53 out xmit tun0
> 01300 allow udp from 203.2.75.132 53 to 198.142.161.98 in recv tun0
> 01400 allow udp from 203.2.75.108 53 to 198.142.161.98 in recv tun0
>
> But my log shows....
>
> ipfw: 65435 Deny UDP 198.142.161.98:1024 202.2.75.132:53 out via tun0
*.*
>
> The first of the DNS rules should allow any port from 198.142.161.98 to
> 203.3.75.132 port 53 should it not?
*.*
>
> What am I not understanding?
Your understanding is right; your reading is wrong. Note the marked
digits carefully - you've got three different IP addresses there,
always with either 2s or 3s in the marked locations.
<mike
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?14859.46378.832801.322465>