From owner-freebsd-questions@FreeBSD.ORG  Mon Mar 10 22:30:34 2008
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 8A252106566B
	for <freebsd-questions@freebsd.org>;
	Mon, 10 Mar 2008 22:30:34 +0000 (UTC)
	(envelope-from wojtek@wojtek.tensor.gdynia.pl)
Received: from wojtek.tensor.gdynia.pl (wojtek.tensor.gdynia.pl
	[IPv6:2001:4070:101:2::1])
	by mx1.freebsd.org (Postfix) with ESMTP id 6A0B98FC13
	for <freebsd-questions@freebsd.org>;
	Mon, 10 Mar 2008 22:30:27 +0000 (UTC)
	(envelope-from wojtek@wojtek.tensor.gdynia.pl)
Received: from wojtek.tensor.gdynia.pl (localhost [IPv6:::1])
	by wojtek.tensor.gdynia.pl (8.13.8/8.13.8) with ESMTP id m2AMUEKC007538;
	Mon, 10 Mar 2008 23:30:14 +0100 (CET)
	(envelope-from wojtek@wojtek.tensor.gdynia.pl)
Received: from localhost (wojtek@localhost)
	by wojtek.tensor.gdynia.pl (8.13.8/8.13.8/Submit) with ESMTP id
	m2AMU5ik007534; Mon, 10 Mar 2008 23:30:12 +0100 (CET)
	(envelope-from wojtek@wojtek.tensor.gdynia.pl)
Date: Mon, 10 Mar 2008 23:30:05 +0100 (CET)
From: Wojciech Puchar <wojtek@wojtek.tensor.gdynia.pl>
To: Zbigniew Szalbot <zszalbot@gmail.com>
In-Reply-To: <94136a2c0803101520p4f044ce4lae76975f899296e7@mail.gmail.com>
Message-ID: <20080310232639.K7504@wojtek.tensor.gdynia.pl>
References: <94136a2c0803101454l6ca76c99ma1fa1083d7ea2137@mail.gmail.com>
	<20080310231502.V7454@wojtek.tensor.gdynia.pl>
	<94136a2c0803101520p4f044ce4lae76975f899296e7@mail.gmail.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
Cc: freebsd-questions <freebsd-questions@freebsd.org>
Subject: Re: traceroute problems
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 10 Mar 2008 22:30:34 -0000

>>
>> what do you mean "hardware firewall"?
>
> Dlink DFL-700.

AFAIK it doesn't contain in-silicon logic to route/block/pass packets 
according to rules. it works in the same way like computer running say 
FreeBSD with network cards, just it's dedicated box.

today the "hardware" is abused too much.

true "hardware" routers/firewalls begins at about 10Gbit/s range, where 
making this into hardware make sense.
>> > 4  * * *
>>
>>
>> your firewall (whatever "hardware" means) probably block traceroute
>>  packets
>
> Right - thanks. I will see if I can unblock it then.
>
traceroute uses UDP packets, no special port numbers.