Date: Mon, 29 Jul 2002 15:07:05 +0000 From: Philip Reynolds <philip.reynolds@rfc-networks.ie> To: freebsd-ipfw@freebsd.org Subject: Re: 4.6-RELEASE / NATD + IPFW + keep-state Message-ID: <20020729150705.A13050@rfc-networks.ie> In-Reply-To: <20020729144758.A11849@rfc-networks.ie>; from philip.reynolds@rfc-networks.ie on Mon, Jul 29, 2002 at 02:47:58PM %2B0000 References: <20020729144758.A11849@rfc-networks.ie>
next in thread | previous in thread | raw e-mail | index | archive | help
Philip Reynolds <philip.reynolds@rfc-networks.ie> 91 lines of wisdom included: > Once a connection is made to the machine, ``ipfw -d list'' brings up > the following in it's dynamic ruleset. > > 00100 11 726 (T 19, slot 137) <-> tcp, 10.0.0.56 3245<-> 10.0.0.10 > 22 > 00100 33 3958 (T 299, slot 179) <-> tcp, 10.0.1.2 3245<-> 10.0.0.10 > 22 These lines are of course 00100 11 726 (T 19, slot 137) <-> tcp, 10.0.0.1 3245<-> 10.0.0.10 22 00100 33 3958 (T 299, slot 179) <-> tcp, 10.0.1.2 3245<-> 10.0.0.10 22 The connection is being made from 10.0.1.2 to 10.0.0.10 Once the first connection (i.e. the lower timeout value, the SYN connection) drops, my whole connection drops. Apologies. Phil. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020729150705.A13050>