From owner-freebsd-isp@FreeBSD.ORG Tue Mar 8 15:01:50 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 93A7A16A4CE for ; Tue, 8 Mar 2005 15:01:50 +0000 (GMT) Received: from smtp4.wlink.com.np (smtp4.wlink.com.np [202.79.32.87]) by mx1.FreeBSD.org (Postfix) with SMTP id 53B1243D49 for ; Tue, 8 Mar 2005 15:01:47 +0000 (GMT) (envelope-from bikrant_ml@wlink.com.np) Received: (qmail 89685 invoked from network); 8 Mar 2005 15:01:42 -0000 Received: from unknown (HELO av-scanner-02.wlink.com.np) (202.79.32.91) by 0 with SMTP; 8 Mar 2005 15:01:42 -0000 Received: (qmail 83751 invoked by uid 1009); 8 Mar 2005 15:01:39 -0000 Received: from bikrant_ml@wlink.com.np by av-scanner-02.wlink.com.np by uid 1003 with qmail-scanner-1.20 ( Clear:RC:1(202.79.32.78):. Processed in 0.014503 secs); 08 Mar 2005 15:01:39 -0000 Received: from smtp3.wlink.com.np (202.79.32.78) by av-scanner-02.wlink.com.np with SMTP; 8 Mar 2005 15:01:39 -0000 Received: (qmail 7004 invoked by uid 514); 8 Mar 2005 15:01:42 -0000 Received: from [202.79.45.235] (HELO HOME) by smtp3.wlink.com.np (qmail-smtpd) with SMTP; 08 Mar 2005 15:01:41 -0000 (Tue, 08 Mar 2005 20:46:41 +0545) Message-ID: <002a01c523ef$bc5af280$eb2d4fca@HOME> From: "Bikrant Neupane" To: Date: Tue, 8 Mar 2005 20:46:38 +0545 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1106 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 X-Spam-Check-By: smtp3.wlink.com.np Spam: No ; -4.9 / 5.0 X-Spam-Status-WL: No, hits=-4.9 required=5.0 cc: freebsd-net@freebsd.org Subject: Session Timeout issue in pppoed X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 08 Mar 2005 15:01:50 -0000 Hi, I have a pppoe server on FreeBSD 4.10. I have configured my Radius Server ( radiator) to set Session-Timeout parameter so that the clients who are using prepaid hour based service get disconnected when their time is over. In the ppp.log file I see the the Sessio-Timeout being accepted by the server. In the mean time the same connection has another Session-Timeout parameter set whose value is 0!! As a result the clients do not get dsconnected at the specified time. I guess this is configuration issue/problem with ppp rather than pppoed. this is a portion of my ppp.log file. ppp[18466]: Phase: PPP Started (direct mode). ppp[18466]: Phase: bundle: Establish ppp[18466]: Phase: deflink: closed -> opening ppp[18466]: Phase: deflink: Link is a netgraph node ppp[18466]: Phase: deflink: Connected! ppp[18466]: Phase: deflink: opening -> carrier ppp[18466]: Phase: deflink: carrier -> lcp ppp[18466]: Phase: bundle: Authenticate ppp[18466]: Phase: deflink: his = none, mine = PAP ppp[18466]: Phase: Pap Input: REQUEST (gomez5) ppp[18466]: Phase: Radius: Request sent ppp[18466]: Phase: Radius(auth): ACCEPT received ppp[18466]: Phase: MTU 768 ppp[18466]: Phase: VJ enabled ppp[18466]: Phase: Session-Timeout 29218 <<<<< ppp[18466]: Phase: Session-Timeout 0 <<<<< ppp[18466]: Phase: Pap Output: SUCCESS ppp[18466]: Phase: deflink: lcp -> open ppp[18466]: Phase: bundle: Network ppp[18466]: Phase: Radius(acct): Accounting response received Here is my ppp.conf file default: allow users enable pap allow mode direct set mru 1492 set mtu 1492 set speed sync set timeout 172800 #2 days: 48hrs enable lqr set ifaddr 202.79.xx.xx 202.79.xx.xx-202.79.xx.xx load server set radius /etc/radius.conf accept dns Any idea why this is happening?? Please suggest. Thank you, Bikrant From owner-freebsd-isp@FreeBSD.ORG Wed Mar 9 05:51:33 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CAC9016A4CE; Wed, 9 Mar 2005 05:51:33 +0000 (GMT) Received: from smtp1.skyinet.net (smtp1.skyinet.net [202.78.97.6]) by mx1.FreeBSD.org (Postfix) with ESMTP id 160BD43D2D; Wed, 9 Mar 2005 05:51:33 +0000 (GMT) (envelope-from fooler@skyinet.net) Received: from fooler (fooler.ilo.skyinet.net [202.78.118.66]) by smtp1.skyinet.net (Postfix) with SMTP id F36BD583C0; Wed, 9 Mar 2005 13:51:30 +0800 (PHT) Message-ID: <01d001c5246c$0b9ddc50$42764eca@ilo.skyinet.net> From: "fooler" To: "Bikrant Neupane" , References: <002a01c523ef$bc5af280$eb2d4fca@HOME> Date: Wed, 9 Mar 2005 13:51:31 +0800 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 1 X-MSMail-Priority: High X-Mailer: Microsoft Outlook Express 6.00.2800.1437 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1409 cc: freebsd-net@freebsd.org Subject: Re: Session Timeout issue in pppoed X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Mar 2005 05:51:33 -0000 ----- Original Message ----- From: "Bikrant Neupane" To: Cc: Sent: Tuesday, March 08, 2005 11:01 PM Subject: Session Timeout issue in pppoed > Hi, > I have a pppoe server on FreeBSD 4.10. > I have configured my Radius Server ( radiator) to set Session-Timeout > parameter so that the clients who are using prepaid hour based service get > disconnected when their time is over. In the ppp.log file I see the the > Sessio-Timeout being accepted by the server. In the mean time the same > connection has another Session-Timeout parameter set whose value is 0!! As a > result the clients do not get dsconnected at the specified time. > I guess this is configuration issue/problem with ppp rather than pppoed. > > this is a portion of my ppp.log file. > > ppp[18466]: Phase: PPP Started (direct mode). > ppp[18466]: Phase: bundle: Establish > ppp[18466]: Phase: deflink: closed -> opening > ppp[18466]: Phase: deflink: Link is a netgraph node > ppp[18466]: Phase: deflink: Connected! > ppp[18466]: Phase: deflink: opening -> carrier > ppp[18466]: Phase: deflink: carrier -> lcp > ppp[18466]: Phase: bundle: Authenticate > ppp[18466]: Phase: deflink: his = none, mine = PAP > ppp[18466]: Phase: Pap Input: REQUEST (gomez5) > ppp[18466]: Phase: Radius: Request sent > ppp[18466]: Phase: Radius(auth): ACCEPT received > ppp[18466]: Phase: MTU 768 > ppp[18466]: Phase: VJ enabled > ppp[18466]: Phase: Session-Timeout 29218 <<<<< > ppp[18466]: Phase: Session-Timeout 0 <<<<< > ppp[18466]: Phase: Pap Output: SUCCESS > ppp[18466]: Phase: deflink: lcp -> open > ppp[18466]: Phase: bundle: Network > ppp[18466]: Phase: Radius(acct): Accounting response received > > Here is my ppp.conf file > default: > allow users > enable pap > allow mode direct > set mru 1492 > set mtu 1492 > set speed sync > set timeout 172800 #2 days: 48hrs > enable lqr > set ifaddr 202.79.xx.xx 202.79.xx.xx-202.79.xx.xx > load server > set radius /etc/radius.conf > accept dns > > > Any idea why this is happening?? Please suggest. pppoed is just a daemon processing the pppoe frames while (user) ppp is the one handling the session-timeout radius attribute once configured to use the radius service... the way i look at it, your radius server (radiator) is sending two session-timeout attributes which the user ppp accepted the two attributes and set the last value which is 0 (unlimited time)... try a tcpdump or your radiator utility if indeed your radius server is sending two session-timeout attributes... fooler. From owner-freebsd-isp@FreeBSD.ORG Thu Mar 10 23:44:47 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6BD0F16A4CE for ; Thu, 10 Mar 2005 23:44:47 +0000 (GMT) Received: from mail.yazzy.org (mail.yazzy.org [217.8.140.16]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0EA9743D39 for ; Thu, 10 Mar 2005 23:44:47 +0000 (GMT) (envelope-from lists@yazzy.org) Received: from yazzy.yazzy.org (yazzy.yazzy.org [192.168.98.11]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.yazzy.org (Postfix) with ESMTP id C40E239869; Fri, 11 Mar 2005 00:46:11 +0100 (CET) Date: Thu, 10 Mar 2005 23:44:37 +0000 From: Marcin Jessa To: martes.wigglesworth@earthlink.net Message-Id: <20050310234437.58746632.lists@yazzy.org> In-Reply-To: <1102164417.74851.404.camel@Mobile1.276NET> References: <1102156965.74851.386.camel@Mobile1.276NET> <41B1AB27.6000504@centtech.com> <1102164417.74851.404.camel@Mobile1.276NET> Organization: YazzY.org X-Mailer: Sylpheed version 1.0.0 (GTK+ 1.2.10; i686-pc-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit cc: freebsd-isp@freebsd.org cc: anderson@centtech.com Subject: Re: VOIP/Telephony Applications/Embedded Systems info... X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 10 Mar 2005 23:44:47 -0000 Hi Martes, guys. Join #wifibsd on irc.freenode.net and talk to masta or YazzY We (www.wifibsd.org) have build scripts to create embedded systems. With the scripts all it takes is to actually run two commands to have an iso or bin image ready for your soekris :) On Sat, 04 Dec 2004 15:46:57 +0300 Martes Wigglesworth wrote: > I am looking for just such information. I want to do a "truly embedded" > application/project, and I do want to learn about the > programming/hacking aspects of the process. I am still in school, and > would like to apply such knowledge to my major studies. Plus, I like to > do things myself, and that is the best way for me to learn how all this > stuff really works. > > Any links would be very much appreciated. > -- > Respectfully, > > > M.G.W. > > System: > Asus M6N > Intel Dothan 1.7 > 512MB RAM > 40GB HD > 10/100/1000 NIC > Wireless b/g (not working yet) > BSD-5.2.1 > GCC-3.3.5/3.3.3(until I replace indigenous gcc) > IFORT-for linux(Intell Fortran) > gfortran > python-2.3 > Perl-5.6.1/5.8.5 > Java-sdk-1.4.2_5 > KDE-3.1.4 > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" -- Regards, M. Jessa http://www.yazzy.org From owner-freebsd-isp@FreeBSD.ORG Fri Mar 11 04:28:46 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 825C816A4CE for ; Fri, 11 Mar 2005 04:28:46 +0000 (GMT) Received: from smtp4.wlink.com.np (smtp4.wlink.com.np [202.79.32.87]) by mx1.FreeBSD.org (Postfix) with SMTP id 502CE43D55 for ; Fri, 11 Mar 2005 04:28:43 +0000 (GMT) (envelope-from bikrant_ml@wlink.com.np) Received: (qmail 12122 invoked from network); 11 Mar 2005 04:28:38 -0000 Received: from unknown (HELO wlink.com.np) (202.79.32.45) by 0 with SMTP; 11 Mar 2005 04:28:38 -0000 Received: (qmail 32295 invoked by uid 510); 11 Mar 2005 04:28:38 -0000 Received: from 202.79.36.168 by testmx.wlink.com.np (envelope-from , uid 508) with qmail-scanner-1.25 (clamdscan: 0.83/705. Clear:RC:1(202.79.36.168):. Processed in 0.030466 secs); 11 Mar 2005 04:28:38 -0000 X-Qmail-Scanner-Mail-From: bikrant_ml@wlink.com.np via testmx.wlink.com.np X-Qmail-Scanner: 1.25 (Clear:RC:1(202.79.36.168):. Processed in 0.030466 secs) Received: from [202.79.36.168] (HELO bikrant.wlink.com.np) by wlink.com.np (qmail-smtpd) with SMTP; 11 Mar 2005 04:28:36 -0000 (Fri, 11 Mar 2005 10:13:36 +0545) From: Bikrant Neupane To: freebsd-net@freebsd.org Date: Fri, 11 Mar 2005 10:13:30 +0545 User-Agent: KMail/1.7.2 References: <002a01c523ef$bc5af280$eb2d4fca@HOME> <01d001c5246c$0b9ddc50$42764eca@ilo.skyinet.net> In-Reply-To: <01d001c5246c$0b9ddc50$42764eca@ilo.skyinet.net> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200503111013.30287.bikrant_ml@wlink.com.np> X-Spam-Check-By: wlink.com.np Spam: No ; 4.1 / 5.0 X-Spam-Status-WL: No, hits=4.1 required=5.0 cc: freebsd-isp@freebsd.org cc: fooler Subject: Re: Session Timeout issue in pppoed X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 11 Mar 2005 04:28:46 -0000 Exactly!!! There was a bug in our radius code :D thanks again, Bikrant On Wednesday 09 March 2005 11:36, fooler wrote: > ----- Original Message ----- > From: "Bikrant Neupane" > To: > Cc: > Sent: Tuesday, March 08, 2005 11:01 PM > Subject: Session Timeout issue in pppoed > > > Hi, > > I have a pppoe server on FreeBSD 4.10. > > I have configured my Radius Server ( radiator) to set Session-Timeout > > parameter so that the clients who are using prepaid hour based service > > get disconnected when their time is over. In the ppp.log file I see the > > the Sessio-Timeout being accepted by the server. In the mean time the > > same connection has another Session-Timeout parameter set whose value is > > 0!! As > > a > > > result the clients do not get dsconnected at the specified time. > > I guess this is configuration issue/problem with ppp rather than pppoed. > > > > this is a portion of my ppp.log file. > > > > ppp[18466]: Phase: PPP Started (direct mode). > > ppp[18466]: Phase: bundle: Establish > > ppp[18466]: Phase: deflink: closed -> opening > > ppp[18466]: Phase: deflink: Link is a netgraph node > > ppp[18466]: Phase: deflink: Connected! > > ppp[18466]: Phase: deflink: opening -> carrier > > ppp[18466]: Phase: deflink: carrier -> lcp > > ppp[18466]: Phase: bundle: Authenticate > > ppp[18466]: Phase: deflink: his = none, mine = PAP > > ppp[18466]: Phase: Pap Input: REQUEST (gomez5) > > ppp[18466]: Phase: Radius: Request sent > > ppp[18466]: Phase: Radius(auth): ACCEPT received > > ppp[18466]: Phase: MTU 768 > > ppp[18466]: Phase: VJ enabled > > ppp[18466]: Phase: Session-Timeout 29218 <<<<< > > ppp[18466]: Phase: Session-Timeout 0 <<<<< > > ppp[18466]: Phase: Pap Output: SUCCESS > > ppp[18466]: Phase: deflink: lcp -> open > > ppp[18466]: Phase: bundle: Network > > ppp[18466]: Phase: Radius(acct): Accounting response received > > > > Here is my ppp.conf file > > default: > > allow users > > enable pap > > allow mode direct > > set mru 1492 > > set mtu 1492 > > set speed sync > > set timeout 172800 #2 days: 48hrs > > enable lqr > > set ifaddr 202.79.xx.xx 202.79.xx.xx-202.79.xx.xx > > load server > > set radius /etc/radius.conf > > accept dns > > > > > > Any idea why this is happening?? Please suggest. > > pppoed is just a daemon processing the pppoe frames while (user) ppp is the > one handling the session-timeout radius attribute once configured to use > the radius service... the way i look at it, your radius server (radiator) > is sending two session-timeout attributes which the user ppp accepted the > two attributes and set the last value which is 0 (unlimited time)... try a > tcpdump or your radiator utility if indeed your radius server is sending > two session-timeout attributes... > > fooler. > > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Fri Mar 11 19:21:33 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AEC0416A4CE for ; Fri, 11 Mar 2005 19:21:33 +0000 (GMT) Received: from web52403.mail.yahoo.com (web52403.mail.yahoo.com [206.190.39.111]) by mx1.FreeBSD.org (Postfix) with SMTP id 233F143D5D for ; Fri, 11 Mar 2005 19:21:33 +0000 (GMT) (envelope-from arshkit@yahoo.com) Received: (qmail 72835 invoked by uid 60001); 11 Mar 2005 19:21:31 -0000 Comment: DomainKeys? See http://antispam.yahoo.com/domainkeys DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; b=l4NoIgTEbiCVCA63xxfhQsUi/xTM35w2CZ0b4CI3vk+dqhc46TWrN6cHPJg/+5b857RAK13Z+4hy3w6jJDJ7f2YulX83FTS5Xi5r3YLBoNjI6xID7y+pmlBQFaGi/ZRIeenfQXOxqsTWz+LkQOsSFAxBhQ6YT++D5Z6sUyR19KE= ; Message-ID: <20050311192131.72833.qmail@web52403.mail.yahoo.com> Received: from [129.2.42.109] by web52403.mail.yahoo.com via HTTP; Fri, 11 Mar 2005 11:21:31 PST Date: Fri, 11 Mar 2005 11:21:31 -0800 (PST) From: Arshkit Dullat To: freebsd-isp@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Subject: sendmail authentication relay X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 11 Mar 2005 19:21:33 -0000 I am trying to setup Sendmail Authentication Relay on my Mail Server. For this I am trying to install the CYRUS SASL Libraries. I did a quick compile and build after untarring it to a directory /usr/local/src/ /configure --prefix=/usr --sysconfdir=/etc --infodir=/usr/share/info --mandir=/usr/share/man --enable-login and then "make" and "make install" I tried to run the SASL Authentication Daemon : using the following command : saslauthd -a shadow but I get this message ; [root@safari sasl2]# saslauthd -a shadow saslauthd[10615] :main : could not chdir to: /var/state/saslauthd saslauthd[10615] :main : chdir: No such file or directory saslauthd[10615] :main : Check to make sure the directory exists and is saslauthd[10615] :main : writeable by the user this process runs as. Right now , I donot authenticate ppl for checking and sending their mails, I need to implement a RELAY so that I dont have to add the IP Addresses of all users who might want to access mail using my mailserver. Am a newbie in this stuff so need help. thanks __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com From owner-freebsd-isp@FreeBSD.ORG Fri Mar 11 19:51:53 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B4F0716A531 for ; Fri, 11 Mar 2005 19:51:52 +0000 (GMT) Received: from web60306.mail.yahoo.com (web60306.mail.yahoo.com [216.109.118.117]) by mx1.FreeBSD.org (Postfix) with SMTP id 1865143D48 for ; Fri, 11 Mar 2005 19:51:52 +0000 (GMT) (envelope-from casteld73@yahoo.com) Received: (qmail 45610 invoked by uid 60001); 11 Mar 2005 19:51:51 -0000 Comment: DomainKeys? See http://antispam.yahoo.com/domainkeys DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; b=c5rtkPEg3dn4mlSyAki7/3EgOEyLLNq3NizvkynVzBb84UTQcLzAdumS4klaOlaiz068oGMhkcP8r5Nc4l01jz02IgUPBGD6SoZYk4mnHSNYTcyD6DaiRnyt4ZoCNhjbzeTM+RZiwSjxQSjtGPgc9xfLf/b51IwNBniqCMTJnfw= ; Message-ID: <20050311195150.45608.qmail@web60306.mail.yahoo.com> Received: from [66.95.160.2] by web60306.mail.yahoo.com via HTTP; Fri, 11 Mar 2005 11:51:50 PST Date: Fri, 11 Mar 2005 11:51:50 -0800 (PST) From: d c To: freebsd-isp@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Content-Filtered-By: Mailman/MimeDel 2.1.1 Subject: Transparent Firewall- Bridge on 5.3 X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 11 Mar 2005 19:51:53 -0000 I have currently setup bridging on 5.3 p5 w/o too much effort. It works as documented. However I believe I am trying to do something that is not a function of bridging and I wanted to run it by the experts. Essentially I want ALL traffic to pass through the bridge. I accomplished this from the handbook. However I would like to pickoff any packets destined for port 25. Then I would like to forward them to 127.0.0.1:10025. >From the googling I have done I have seen notes mentioning the bridge not handling "fwd" with ipfilter. Here is the rule I am using: ipfw add 100 fwd 127.0.0.1,10025 tcp from not me to any 25 If I log it does show up in /var/log/security. 1. Is there a special directive I need to use when processing layer3 on a layer 2 bridge ? 2. Is the fwd command supported? Goal: Have a transparent device that intercepts all email and hands off to clamsmtp which is listening on 127.0.0.1:10025 Issue: Packets do not seem to be making it to clamsmtp for processing. Also- Does handing off to the loopback on a bridge cause any problems. Could I be making an infinte loop? Anyway to set the rule to process in one direction only on a bridge? Any advice / help / questions /comments would be greatly appreciated. TIA __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com