From owner-freebsd-current@FreeBSD.ORG Wed Jun 16 16:42:00 2004 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 518FC16A4D9 for ; Wed, 16 Jun 2004 16:41:58 +0000 (GMT) Received: from smtp08.web.de (smtp08.web.de [217.72.192.226]) by mx1.FreeBSD.org (Postfix) with ESMTP id 17B5743D46 for ; Wed, 16 Jun 2004 16:41:58 +0000 (GMT) (envelope-from nakal@web.de) Received: from [217.81.245.98] (helo=[217.81.245.98]) by smtp08.web.de with esmtp (TLSv1:DES-CBC3-SHA:168) (WEB.DE 4.101 #26) id 1BadTY-0005Fz-00 for freebsd-current@freebsd.org; Wed, 16 Jun 2004 18:41:24 +0200 From: Martin To: FreeBSD Current Content-Type: text/plain Message-Id: <1087404082.795.28.camel@klotz.local> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.4.6 Date: Wed, 16 Jun 2004 18:41:23 +0200 Content-Transfer-Encoding: 7bit Sender: nakal@web.de Subject: ppp with dynamic IPs and ipfw "me" X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Jun 2004 16:42:01 -0000 Hello, I've a strange effect here when using "ppp -ddial" with my ISP and my firewall rules. Sometimes, I get disconnected with my DSL router and ppp reconnects me in background. This is correct so far, but I also get a new (dynamic) IP and it seems that ipfw does not forget my old IP. I noticed this behavior with the rules which restrict the communication to the ntpd-port 123. The rules look like this: allow udp from xx.xx.xx.xx 123 to me dst-port 123 allow udp from me 123 to xx.xx.xx.xx dst-port 123 After I get a new IP, the logs show that the communication from "me" to xx.xx.xx.xx is blocked. I'm on DSL here (using PPPoE and NAT). Is this a bug or should I update the rules myself? If yes, what is the best way to update the rules? Martin