From owner-freebsd-ipfw Sun Sep 19 19:59:38 1999 Delivered-To: freebsd-ipfw@freebsd.org Received: from sys.com.sg (gw.sys.com.sg [203.120.45.1]) by hub.freebsd.org (Postfix) with ESMTP id 64F84155BA for ; Sun, 19 Sep 1999 19:59:28 -0700 (PDT) (envelope-from brian@sys.com.sg) Received: from sys.com.sg (jupiter.sys.com.sg [203.120.45.5]) by sys.com.sg (8.9.2/8.9.2) with ESMTP id KAA11400; Mon, 20 Sep 1999 10:58:44 +0800 (SGT) (envelope-from brian@sys.com.sg) Message-ID: <37E5A2CC.B839FD12@sys.com.sg> Date: Mon, 20 Sep 1999 02:58:20 +0000 From: Brian Tan X-Mailer: Mozilla 4.6 [en] (X11; I; Linux 2.2.5-15 i686) X-Accept-Language: en MIME-Version: 1.0 To: "Rodney W. Grimes" Cc: freebsd-ipfw@FreeBSD.ORG Subject: Re: what is 'ICMP:3.13' ? References: <199909200140.SAA56860@gndrsh.dnsmgr.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-ipfw@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hi Rodney, Yup, Cisco 25xx there is. Tried the following to allow and it looked OK ipfw add nnnn allow 9 from xxx.xxx.xxx.xxx to xxx.xxx.xxx.xxx Thanks. Brian "Rodney W. Grimes" wrote: > > > Hi All, > > > > Besides the ICMP:x:x messages, does anyone know what "Deny P:9" mean, as > > in > > > > ipfw: 10900 Deny P:9 XXX.XXX.XXX.XXX 255.255.255.255 in via rl0 > > Yea... you have someone running some form of igp, it literally mans Protocol 9 > as in what is listed in /etc/protocols: > > igp 9 IGP # any private interior gateway (Cisco: for IGRP) > > Got any Ciscos around??? > > > Thanks > > Brian > > Barry Irwin wrote: > > > > > > On Thu 1999-09-16 (19:30), AAKopeyko@rio.ru wrote: > > > > Hi All! > > > > > > > > Yesterday I add new rule > > > > > > > > ipfw add 802 allow log icmp from any to XXX.XXX.XXX.XXX > > > > > > > > and now have a lot of > > > > > > > > > ipfw: 802 Accept ICMP:3.13 XXX.XXX.XXX.XXX yyy.yyy.yyy.yyy in via tun0 > > > > > > > > in log. > > > > > > > > Can anybody explain what 'ICMP type 3 code 13' message is? rfc 792, 950 never > > > > talk about it. > > > > > > >From TCP/IP Illustrated volume I ( Stevens) > > > > > > ICMP Type 3 code 13: > > > communication administritavely prohibited by filter > > > (Error stat) > > > > > > In other words somwhere your traffic is being blocked by a server/router > > > which is being kind enough to tell you that this has been blocked by an > > > adminitritive rule, rather than the service being unavalible etc. > > > > > > Barry > > > -- > > > -------------------------------------------------------------------------- > > > Barry Irwin IRC: balin@zanet (#linux) > > > bvi@moria.org http://rucus.ru.ac.za/~bvi > > > Whois BI414 - PMPN8EZ - http://moria.org > > > -------------------------------------------------------------------------- > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > with "unsubscribe freebsd-ipfw" in the body of the message > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-ipfw" in the body of the message > > > > -- > Rod Grimes - KD7CAX - (RWG25) rgrimes@gndrsh.dnsmgr.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message