Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 1 May 2003 16:04:35 -0700
From:      "Crist J. Clark" <crist.clark@attbi.com>
To:        Martins Dzelde <dzelde@parks.lv>
Cc:        freebsd-ipfw@freebsd.org
Subject:   Re: ipfw + http : apache
Message-ID:  <20030501230435.GB85493@blossom.cjclark.org>
In-Reply-To: <001f01c31010$5da8ca90$0a00a8c0@dzelde>
References:  <001f01c31010$5da8ca90$0a00a8c0@dzelde>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
On Thu, May 01, 2003 at 09:34:57PM +0300, Martins Dzelde wrote:
[snip]
> when cheking the ipfw counters with ipfw -a list, the I get that the only
> the first two are used and there is no use of the rule 65535 ie:
> 
> 00100    xxx    xxx    divert 8668 ip from any to any
> 00200    xxx    xxx    allow ip from any to any
> 65535    0        0        deny ip from any to any

Does natd(8) have the "deny_incoming" switch set?
-- 
Crist J. Clark                     |     cjclark@alum.mit.edu
                                   |     cjclark@jhu.edu
http://people.freebsd.org/~cjc/    |     cjc@freebsd.org



Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?20030501230435.GB85493>