Date: Wed, 07 May 2008 22:49:56 +0200 From: Jille <jille@quis.cx> To: Ansar Mohammed <ansarm@gmail.com> Cc: freebsd-pf@freebsd.org Subject: Re: UDP weirdness Message-ID: <482215F4.1080806@quis.cx> In-Reply-To: <008b01c8b081$c74692e0$55d3b8a0$@com> References: <004f01c8b068$89c89350$9d59b9f0$@com> <005101c8b06b$5f0743c0$1d15cb40$@com> <008b01c8b081$c74692e0$55d3b8a0$@com>
next in thread | previous in thread | raw e-mail | index | archive | help
Ansar Mohammed schreef: > Ok, so adding the line as you suggested worked. > Thanks Kevin. > > But why do I need to have both entries in for > > pass in proto udp from any to any port 53 > pass out proto udp from any to any port 53 > > what makes UDP so special? UDP is stateless, With TCP you've got an connection (identified by: local host:port and remote host:port) With UDP, well, you just trow the packages over the line, and hope the is (still) someone on the other end. So the is (almost) no way to detect whether packets are responses to eachother -- Jille
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?482215F4.1080806>