From owner-freebsd-ipfw@FreeBSD.ORG Fri Sep 23 00:38:26 2005 Return-Path: X-Original-To: freebsd-ipfw@freebsd.org Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7F4D116A41F for ; Fri, 23 Sep 2005 00:38:26 +0000 (GMT) (envelope-from cswiger@mac.com) Received: from pi.codefab.com (pi.codefab.com [199.103.21.227]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1A3FC43D46 for ; Fri, 23 Sep 2005 00:38:26 +0000 (GMT) (envelope-from cswiger@mac.com) Received: from localhost (localhost [127.0.0.1]) by pi.codefab.com (Postfix) with ESMTP id 8F9745F8A; Thu, 22 Sep 2005 20:38:25 -0400 (EDT) Received: from pi.codefab.com ([127.0.0.1]) by localhost (pi.codefab.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 36521-02; Thu, 22 Sep 2005 20:38:24 -0400 (EDT) Received: from [192.168.1.3] (pool-68-161-68-11.ny325.east.verizon.net [68.161.68.11]) by pi.codefab.com (Postfix) with ESMTP id 7E2BF5F85; Thu, 22 Sep 2005 20:38:24 -0400 (EDT) Message-ID: <43334E81.9080707@mac.com> Date: Thu, 22 Sep 2005 20:38:25 -0400 From: Chuck Swiger Organization: The Courts of Chaos User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.11) Gecko/20050728 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Hugo Osorio References: <680ac84705082407576dd2f6b4@mail.gmail.com> <20050825084039.GH659@obiwan.tataz.chchile.org> <680ac84705082507486347b67@mail.gmail.com> <680ac847050922171856ed2904@mail.gmail.com> In-Reply-To: <680ac847050922171856ed2904@mail.gmail.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: amavisd-new at codefab.com Cc: freebsd-ipfw@freebsd.org Subject: Re: mime contents thru ipfw X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 23 Sep 2005 00:38:26 -0000 Hugo Osorio wrote: > while i am navigating, after trying to load a file for attachment, in > squirrelmail, it says: > 'documents contains no data' > > after entering in hotmail service, cannot access the page of my messages... > it longs forever.. and nothing shows up.. > address like this: > https://loginnet.passport.com/ppsecure/post.srf?id=2&svc=mail&msppjph=1&tw=0&fs=1&fsa=1&fsat=1296000&lc=58378&_lang=ES&bk=1127405014 > > i can not make atachments, it does not transfer files when attaching > > has something to do with SSL, TLS or PCT? > > this is my conf (i have set routes, and they are fine, i think): > 04300 471 29586 allow udp from 172.24.33.0/24 to > 172.25.1.5 53 keep-state via vr0 > 04500 54 3058 allow tcp from 172.24.33.0/24 to > 172.25.1.8 20,21 keep-state via vr0 > 04600 1200 615333 allow tcp from 172.24.33.0/24 to > 172.25.1.5 80,139,443,445 keep-state via vr0 Those can't possibly be your actual IPFW rulesets-- the "http://" strings in the middle don't exist in the output from "ipfw -a l". It's unclear whether you are working on a client machine or box intended as a firewall. It's likely that you should start with the "open" firewall ruleset, and experiment from there, confirming that FTP access via the proxy works properly, HTTPS access, etc. If you still have problems without any firewall rules in place, those will need to be resolved before you have any realistic chance of getting a working IPFW ruleset going. It might also be the case that hanging trying to do FTP data means a PMTU problem, see whether "ifconfig vr0 mtu 1400" helps. -- -Chuck