Date: Fri, 11 Nov 2005 20:10:58 -0800 From: Sean McNeil <sean@mcneil.com> To: Peter Jeremy <PeterJeremy@optushome.com.au> Cc: current@freebsd.org Subject: Re: verrevpath failure from within my own box Message-ID: <1131768658.78554.2.camel@triton.mcneil.com> In-Reply-To: <20051112034750.GC39882@cirb503493.alcatel.com.au> References: <1131755730.6959.7.camel@triton.mcneil.com> <20051112034750.GC39882@cirb503493.alcatel.com.au>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 2005-11-12 at 14:47 +1100, Peter Jeremy wrote: > On Fri, 2005-Nov-11 16:35:30 -0800, Sean McNeil wrote: > >00300 28 2177 deny ip from any to any not verrevpath in via dc0 > > > >as you can see, there are some packets that were denied. I can > >reproduce this with nautilus by simply browsing network:///. > > How about you add a 'log' to that rule and see exactly what is matching. > That may provide a clue to you, or someone on this list, as to what is > not behaving as expected. OK, I did that. I see Nov 11 20:06:37 triton kernel: ipfw: 300 Deny UDP 24.199.45.54:63716 24.199.45.55:137 in via dc0 where 24.199.45.54 is the ip address of dc0. Nothing I didn't expect. Sean
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1131768658.78554.2.camel>