From owner-freebsd-questions  Sun Feb 20 12:25: 4 2000
Delivered-To: freebsd-questions@freebsd.org
Received: from cc942873-a.ewndsr1.nj.home.com (cc942873-a.ewndsr1.nj.home.com [24.2.89.207])
	by hub.freebsd.org (Postfix) with ESMTP id A800837BF4B
	for <freebsd-questions@FreeBSD.ORG>; Sun, 20 Feb 2000 12:24:54 -0800 (PST)
	(envelope-from cjc@cc942873-a.ewndsr1.nj.home.com)
Received: (from cjc@localhost)
	by cc942873-a.ewndsr1.nj.home.com (8.9.3/8.9.3) id PAA36711;
	Sun, 20 Feb 2000 15:29:46 -0500 (EST)
	(envelope-from cjc)
Date: Sun, 20 Feb 2000 15:29:45 -0500
From: "Crist J. Clark" <cjc@cc942873-a.ewndsr1.nj.home.com>
To: Brian Gallucci <briang@expnet.net>
Cc: FreeBSD <freebsd-questions@FreeBSD.ORG>
Subject: Re: IPFW Trouble
Message-ID: <20000220152945.B36373@cc942873-a.ewndsr1.nj.home.com>
Reply-To: cjclark@home.com
References: <000501bf7bd8$a2c90a60$095aaed8@expnet.net>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 1.0i
In-Reply-To: <000501bf7bd8$a2c90a60$095aaed8@expnet.net>; from briang@expnet.net on Sun, Feb 20, 2000 at 11:28:16AM -0800
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Sun, Feb 20, 2000 at 11:28:16AM -0800, Brian Gallucci wrote:
> I noticed a -1 Refused in our logging, What does this mean ?
> 
> ipfw: 700 Deny UDP 10.1.1.1:137 216.174.90.90:137 in via fxp0
> ipfw: -1 Refuse TCP 195.36.173.44:1107 216.174.90.90:80 in via fxp0
> ^^^^^^^^^^^^^^^^^^^^^
> ipfw: 700 Deny UDP 10.0.0.4:137 216.174.90.90:137 in via fxp0
> ipfw: 700 Deny UDP 10.0.0.4:137 216.174.90.90:137 in via fxp0
> ipfw: -1 Refuse TCP 194.106.96.6:59409 216.174.90.90:80 in via fxp0
> ^^^^^^^^^^^^^^^^^^^^^^^
> ipfw: 4400 Deny TCP 24.147.67.6:3566 216.174.90.90:445 in via fxp0
> 
> Running FreeBSD 3.4 

My guess is that rule 65535 is being printed as a 'short' rather than
an 'unsigned short.' Those messages would not happen to be generated
by a default deny?

I'll take a look at the source.
-- 
Crist J. Clark                           cjclark@home.com


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message