From owner-freebsd-questions@FreeBSD.ORG Wed May 4 00:01:02 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DB87316A4CE for ; Wed, 4 May 2005 00:01:02 +0000 (GMT) Received: from sccrmhc11.comcast.net (sccrmhc11.comcast.net [204.127.202.55]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6E05C43D96 for ; Wed, 4 May 2005 00:01:02 +0000 (GMT) (envelope-from bsdaemon@comcast.net) Received: from fw.home (pcp05405355pcs.norstn01.pa.comcast.net[68.81.66.212]) by comcast.net (sccrmhc11) with SMTP id <2005050400010001100n1ukae>; Wed, 4 May 2005 00:01:01 +0000 Received: (qmail 97889 invoked from network); 4 May 2005 00:01:00 -0000 Received: from unknown (HELO ?192.168.1.236?) (192.168.1.236) by fw.home with SMTP; 4 May 2005 00:01:00 -0000 Message-ID: <427810B9.6000103@comcast.net> Date: Tue, 03 May 2005 20:00:57 -0400 From: Kris Maglione User-Agent: Mozilla Thunderbird 1.0 (X11/20041213) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-questions@freebsd.org References: <42780631.8050301@comcast.net> In-Reply-To: <42780631.8050301@comcast.net> X-Enigmail-Version: 0.89.5.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: Re: IPFW uid filtering (UDP) (was (UID)) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 04 May 2005 00:01:03 -0000 subject should read UDP Kris Maglione wrote: > I have OpenVPN listening on an interface on UDP 1194. > It drops to openvpn:openvpn after it opens the socket. sockstat > confirms this. > > When I add a rule to allow packets in on udp 1194 with uid openvpn, > they don't match. > The rule is: > 1340 allow udp from any to me 1194 in recv dc0 uid openvpn > > When I take out "uid openvpn", the packets match. When it's there, > they don't. > > Am I doing something wrong? > > BTW, the same goes for the outgoing rule. > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org"