From owner-freebsd-current  Thu Jun 27 23:07:01 1996
Return-Path: owner-current
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.5/8.7.3) id XAA10533
          for current-outgoing; Thu, 27 Jun 1996 23:07:01 -0700 (PDT)
Received: from rocky.mt.sri.com (rocky.sri.MT.net [204.182.243.10])
          by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id XAA10527;
          Thu, 27 Jun 1996 23:06:58 -0700 (PDT)
Received: (from nate@localhost) by rocky.mt.sri.com (8.7.5/8.7.3) id AAA13890; Fri, 28 Jun 1996 00:06:54 -0600 (MDT)
Date: Fri, 28 Jun 1996 00:06:54 -0600 (MDT)
Message-Id: <199606280606.AAA13890@rocky.mt.sri.com>
From: Nate Williams <nate@mt.sri.com>
To: Nate Williams <nate@mt.sri.com>
Cc: Poul-Henning Kamp <phk@freebsd.org>, current@freebsd.org
Subject: Re: IPFW bugs? 
In-Reply-To: <199606280602.AAA13869@rocky.mt.sri.com>
References: <199606280537.XAA13666@rocky.mt.sri.com>
	<2910.835941172@critter.tfs.com>
	<199606280602.AAA13869@rocky.mt.sri.com>
Sender: owner-current@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

> > Add "log" to all rules and see which number lets you though.
> 
> Ahh, I didn't realize you could 'log' accept rules.  I'll do that.

OK, here's the rule that let's *EVERYTHING* through.

# Should be allowing DNS through, which can be either UDP/TCP
ipfw add  21 pass log all from any 53 to any via $1

But, I get icmp packets, telnet, ftp, etc...

Somehow the '53' port isn't being used at all.


Nate