From owner-freebsd-questions@FreeBSD.ORG Tue Jun 15 03:07:59 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A4FC316A4CE for ; Tue, 15 Jun 2004 03:07:59 +0000 (GMT) Received: from ms-smtp-03-eri0.ohiordc.rr.com (ms-smtp-03-smtplb.ohiordc.rr.com [65.24.5.137]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0652943D41 for ; Tue, 15 Jun 2004 03:07:59 +0000 (GMT) (envelope-from dmehler26@woh.rr.com) Received: from satellite (dhcp065-031-041-029.woh.rr.com [65.31.41.29]) i5F37SVd021079 for ; Mon, 14 Jun 2004 23:07:29 -0400 (EDT) Message-ID: <000701c45284$98c478b0$0200a8c0@satellite> From: "dave" To: Date: Mon, 14 Jun 2004 22:58:03 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1409 X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2800.1409 X-Virus-Scanned: Symantec AntiVirus Scan Engine Subject: options tcp_drop_synfin and virtual hosts X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 15 Jun 2004 03:07:59 -0000 Hello, Is there a doc that says what the tcp_drop_synfin option does and what effect it has on webservers and why it should never be used on such? I've got an apache install on a 5.2.1 box with two hosts, and am having a problem that externalnections can only get to the primary site, while network connections from inside the firewall can get to either site in question. Also, an external connection instead of seeing the site address get the address of the public IP. I've narrowed this down to two possibilities, he's getting his dns from yahoo, and the tcp_drop_synfin option? Any help appreciated. Thanks. Dave.