From owner-freebsd-ipfw@FreeBSD.ORG  Sun Oct 26 02:20:19 2003
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
Delivered-To: freebsd-ipfw@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 4EBB016A4B3
	for <freebsd-ipfw@FreeBSD.ORG>; Sun, 26 Oct 2003 02:20:19 -0800 (PST)
Received: from mout2.freenet.de (mout2.freenet.de [194.97.50.155])
	by mx1.FreeBSD.org (Postfix) with ESMTP id B961243F85
	for <freebsd-ipfw@FreeBSD.ORG>; Sun, 26 Oct 2003 02:20:17 -0800 (PST)
	(envelope-from ino-qc@spotteswoode.de.eu.org)
Received: from [194.97.50.135] (helo=mx2.freenet.de)
	by mout2.freenet.de with asmtp (Exim 4.24)
	id 1ADi0O-0007fY-DM
	for freebsd-ipfw@FreeBSD.ORG; Sun, 26 Oct 2003 11:20:16 +0100
Received: from p3e9baad4.dip.t-dialin.net ([62.155.170.212]
	helo=spotteswoode.dnsalias.org)
	by mx2.freenet.de with asmtp (ID inode@freenet.de) (Exim 4.24 #17)
	id 1ADi0O-0006ZD-0K
	for freebsd-ipfw@FreeBSD.ORG; Sun, 26 Oct 2003 11:20:16 +0100
Received: (qmail 3160 invoked by uid 0); 26 Oct 2003 10:20:37 -0000
Date: 26 Oct 2003 11:20:14 +0100
Message-ID: <ekx0paff.fsf@ID-23066.news.dfncis.de>
From: "Clemens Fischer" <ino-qc@spotteswoode.de.eu.org>
To: "Michael Sierchio" <kudzu@tenebras.com>
In-Reply-To: <3F833434.5090506@tenebras.com> (Michael Sierchio's message of
 "Tue, 07 Oct 2003 14:46:28 -0700")
References: <3F833434.5090506@tenebras.com>
User-Agent: Gnus/5.1003 (Gnus v5.10.3) Emacs/21.3 (berkeley-unix)
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
cc: freebsd-ipfw@FreeBSD.ORG
Subject: Re: Strange leakage of private source addresses w/ipfw and natd
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 26 Oct 2003 10:20:19 -0000

* 2003-10-07 Michael Sierchio:

> This doesn't have a (user-) noticeable impact on traffic, but
> installing a silent network recorder outside my firewall shows that
> some RFC 1918 addrs are getting through.

don't worry, just block them on the external interface.

> I'll post details when I've got them, but I'm wondering if anyone
> else has seen this?

it happens, and with my installation they are coming from the outside.

  clemens