Date: Thu, 8 Mar 2001 22:58:55 -0800 From: "Crist J. Clark" <cjclark@reflexnet.net> To: Dan Larsson <dl@tyfon.net> Cc: FreeBSD Questions List <questions@FreeBSD.ORG> Subject: Re: Strange traceroute issue Message-ID: <20010308225855.T1367@cjc-desktop.users.reflexcom.com> In-Reply-To: <Pine.BSF.4.33.0103081921050.81321-100000@hq1.tyfon.net>; from dl@tyfon.net on Thu, Mar 08, 2001 at 07:24:52PM %2B0100 References: <Pine.BSF.4.33.0103081921050.81321-100000@hq1.tyfon.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Mar 08, 2001 at 07:24:52PM +0100, Dan Larsson wrote:
> We have setup a firewall so that traceroutes can
> be done from hosts on the inside. This works perfect
> for all Microsoft based clients (WinNT) but failes
> for all FreeBSD clients. What could I be missing here?
Windows and UNIX-type OSes do traceroute (or tracert) differently.
> This is the fwrule:
> ${fwcmd} add pass udp from any to any 33434-33523 out via ${oif}
Do you have a corresponding rule to let UDP pass the inner interface?
If you do a tcpdump on the external interface, do you see the UDP
going out?
--
Crist J. Clark cjclark@alum.mit.edu
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010308225855.T1367>