Date: Wed, 28 May 2008 15:43:08 -0700 From: Chuck Swiger <cswiger@mac.com> To: Robert Blayzor <rblayzor.bulk@inoc.net> Cc: freebsd-stable@freebsd.org Subject: Re: Sockets stuck in FIN_WAIT_1 Message-ID: <1A19ABA2-61CD-4D92-A08D-5D9650D69768@mac.com> In-Reply-To: <B42F9BDF-1E00-45FF-BD88-5A07B5B553DC@inoc.net> References: <B42F9BDF-1E00-45FF-BD88-5A07B5B553DC@inoc.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi-- You didn't mention which version of FreeBSD you are running-- that's rather important info. On May 28, 2008, at 3:13 PM, Robert Blayzor wrote: > ipfw: > > 00200 allow tcp from any to me 80 setup > 00200 allow icmp from any to me icmptype 0,3,8,11 > 00200 deny log ip from any to me Also, surely these can't be the only IPFW rules you are using? If you want to use stateful rules, you need a keep-state argument, and you shouldn't be combining allow rules and deny rules into the same ruleset number... -- -Chuck
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1A19ABA2-61CD-4D92-A08D-5D9650D69768>