Date: Tue, 09 Dec 2003 12:32:07 +0800 From: Ganbold <ganbold@micom.mng.net> To: Don Bowman <don@sandvine.com> Cc: freebsd-ipfw@freebsd.org Subject: RE: bridged ipfw problem in FreeBSD 5.2beta Message-ID: <6.0.0.22.2.20031209122902.02a58840@202.179.0.80> In-Reply-To: <FE045D4D9F7AED4CBFF1B3B813C85337035E404F@mail.sandvine.com > References: <FE045D4D9F7AED4CBFF1B3B813C85337035E404F@mail.sandvine.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi,
Thank you for all who helped me. It seems that arp packets weren't pass
through firewall.
I added the rule as don suggested and since then it is working well for
last 25 hours.
Ganbold
At 10:26 PM 05.12.2003, you wrote:
>From: Ganbold [mailto:ganbold@micom.mng.net]
>
> ... bridging firewall ...
>
> ># Allowing connections through localhost.
> >${fwcmd} add 300 pass all from any to any via lo0
> ># pass ARP
> >${fwcmd} add 301 pass udp from 0.0.0.0 2054 to 0.0.0.0
>
>the comment at least is not right, arp is not udp.
>
>maybe something like "add 301 allow layer2 mac-type arp"
>instead?
>
>--don
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6.0.0.22.2.20031209122902.02a58840>