Date: Tue, 9 Dec 2003 21:58:46 +1030 From: "Rob" <listone@deathbeforedecaf.net> To: "Gregory Edigarov" <greg@profi.kharkov.ua> Cc: freebsd-questions <freebsd-questions@freebsd.org> Subject: Re: ipfw keep-state (ASAP anwser need) Message-ID: <006301c3be47$9c0c40b0$a4b826cb@goo> References: <20031209093254.GA366@profi.kharkov.ua> <004d01c3be3a$ebecc850$a4b826cb@goo> <20031209101749.GA529@profi.kharkov.ua>
next in thread | previous in thread | raw e-mail | index | archive | help
Have you perhaps deleted your rules? Check with ipfw list and make sure they are all there. Use /var/log/security to find which rule is denying the packets. If it's the default rule 65535, then your allow rules are somehow incorrect. ----- Original Message ----- From: "Gregory Edigarov" <greg@profi.kharkov.ua> Subject: Re: ipfw keep-state (ASAP anwser need) > On Tue, 09 Dec 2003, Rob wrote: > > > ipfw add 4100 allow udp from me to any 53 keep-state > > ipfw add 4200 allow udp from any to me 53 keep-state > It doesn't work. > > > What does /var/log/security show? > > it shows that all udp traffic to 53 port of any computer was denied. > > > It worked exactly like I've show for a very long time, but a week > ago something has broken. What is the other possibilities? > > -- > With best regards, > Gregory Edigarov > -------------------------------------------------------------------------- ---- > profi.kharkov.ua Systems Administrator > -------------------------------------------------------------------------- ---- >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?006301c3be47$9c0c40b0$a4b826cb>