From owner-freebsd-ipfw Tue Jul 23 9: 7:14 2002 Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6F27237B400 for ; Tue, 23 Jul 2002 09:07:10 -0700 (PDT) Received: from zephir.primus.ca (mail.tor.primus.ca [216.254.136.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id C495743E42 for ; Tue, 23 Jul 2002 09:07:09 -0700 (PDT) (envelope-from drwitura@primus.ca) Received: from firewall.primus.ca ([216.254.141.68] helo=oemcomputer) by zephir.primus.ca with smtp (Exim 3.33 #16) id 17X2Bm-0002K9-0A; Tue, 23 Jul 2002 12:07:06 -0400 Message-ID: <005601c23261$8944d000$b0120a0a@primustel.ca> From: "Didier Rwitura" To: Cc: References: <200207181921.1340411.6@btsoftware.com> <005f01c22e83$e19188c0$b0120a0a@primustel.ca> <20020719085648.GI41699@cicely5.cicely.de> Subject: Re: disconection Date: Tue, 23 Jul 2002 11:56:39 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-ipfw@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG here are the rules #allow ssh add 00300 allow tcp from any to me ssh add 00301 allow tcp from me 22 to any add 00302 allow tcp from any to any out setup keep-state ==================================== Didier Rwitura Technical Support // Soutien Technique P R I M U S TELECOMMUNICATIONS Inc 1-888-222-8577 Business 1-800-370-0015 Residential Ext 8628 Email: drwitura@primus.ca Tech support Email : support@primus.ca Please visit // Visitez svp http://support.primus.ca or // ou http://www.primushost.com ----- Original Message ----- From: "Bernd Walter" To: "Didier Rwitura" Cc: Sent: Friday, July 19, 2002 4:56 AM Subject: Re: disconection > On Thu, Jul 18, 2002 at 01:52:26PM -0400, Didier Rwitura wrote: > > Thanx martin and Thomas > > > > - the auto-off is off completely .. I guess the reason is mostly the > > firewall > > > > - to answer Thomas > > > > yeap i do > > here are my ipfw rules : > > > > #allow ssh > > add 00300 allow tcp from 216.254.136.110 to any ssh in setup keep-state > > > > add 00301 allow tcp from any to any out setup keep-state > > > > add 00302 allow tcp from any ssh to any out setup keep-state > > add 00304 allow tcp from any to any ssh in > > add 00305 allow tcp from any to any out setup keep-state > > add 299 check-states > What is the duplicate 301/305 for? > If you need 304 that's a good sign that packets for your session did > not passed through a check-states. > > -- > B.Walter COSMO-Project http://www.cosmo-project.de > ticso@cicely.de Usergroup info@cosmo-project.de > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-ipfw" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message