Date: Mon, 22 Jul 2002 21:32:56 +0200 From: Bernd Walter <ticso@cicely5.cicely.de> To: "Crist J. Clark" <cjc@FreeBSD.ORG> Cc: ticso@cicely.de, Didier Rwitura <drwitura@primus.ca>, ipfw@FreeBSD.ORG Subject: Re: disconection Message-ID: <20020722193255.GS83916@cicely5.cicely.de> In-Reply-To: <20020722191319.GB51688@blossom.cjclark.org> References: <200207181921.1340411.6@btsoftware.com> <005f01c22e83$e19188c0$b0120a0a@primustel.ca> <20020719085648.GI41699@cicely5.cicely.de> <20020722191319.GB51688@blossom.cjclark.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Jul 22, 2002 at 12:13:19PM -0700, Crist J. Clark wrote: > On Fri, Jul 19, 2002 at 10:56:49AM +0200, Bernd Walter wrote: > > On Thu, Jul 18, 2002 at 01:52:26PM -0400, Didier Rwitura wrote: > > > Thanx martin and Thomas > > > > > > - the auto-off is off completely .. I guess the reason is mostly the > > > firewall > > > > > > - to answer Thomas > > > > > > yeap i do > > > here are my ipfw rules : > > > > > > #allow ssh > > > add 00300 allow tcp from 216.254.136.110 to any ssh in setup keep-state > > > > > > add 00301 allow tcp from any to any out setup keep-state > > > > > > add 00302 allow tcp from any ssh to any out setup keep-state > > > add 00304 allow tcp from any to any ssh in > > > add 00305 allow tcp from any to any out setup keep-state > > > > add 299 check-states > > It's 'check-state,' and adding it would be completely redundant. Using keep-state without check-state is bogus. -- B.Walter COSMO-Project http://www.cosmo-project.de ticso@cicely.de Usergroup info@cosmo-project.de To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020722193255.GS83916>