Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 21 Sep 2005 14:30:35 -0700 (PDT)
From:      ann kok <annkok2001@yahoo.com>
To:        Lowell Gilbert <freebsd-questions-local@be-well.ilk.org>, freebsd-questions@freebsd.org
Subject:   Re: pls help for ipfw
Message-ID:  <20050921213036.64293.qmail@web53315.mail.yahoo.com>
In-Reply-To: <44aci6b0e3.fsf@be-well.ilk.org>

next in thread | previous in thread | raw e-mail | index | archive | help
thank you for your mail

I tried add-state but

ipfw: unrecognised option [-1] add-state

--- Lowell Gilbert
<freebsd-questions-local@be-well.ilk.org> wrote:

> Charles Swiger <cswiger@mac.com> writes:
> 
> > On Sep 21, 2005, at 4:20 PM, ann kok wrote:
> > > my rules:
> > >
> > > ipfw add allow udp from any to tftpserverip
> > > ipfw add allow udp from tftpserverip to any
> > >
> > > In the freebsd box, I can access tftp server but
> > > internal users is hanging in the "get" state
> > 
> > TFTP may also use TCP:
> > 
> > % grep tftp /etc/services
> > tftp             69/udp     # Trivial File
> Transfer
> > tftp             69/tcp     # Trivial File
> Transfer
> 
> Except that it doesn't.  The port is reserved to
> avoid confusion, but
> the TFTP protocol doesn't run on TCP.
> 
> NAT is probably hanging things up.  I think that all
> that's needed is
> to "add-state" on the outgoing TFTP rule.
> 
> -- 
> Lowell Gilbert, embedded/networking software
> engineer, Boston area
> 		http://be-well.ilk.org/~lowell/
> 


__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050921213036.64293.qmail>