From owner-freebsd-isp@FreeBSD.ORG  Tue Oct 19 10:42:18 2004
Return-Path: <owner-freebsd-isp@FreeBSD.ORG>
Delivered-To: freebsd-isp@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 1E38C16A4CE
	for <FreeBSD-isp@freebsd.org>; Tue, 19 Oct 2004 10:42:18 +0000 (GMT)
Received: from mail.act.co.za (mail.act.co.za [196.15.213.131])
	by mx1.FreeBSD.org (Postfix) with ESMTP id D16F843D48
	for <FreeBSD-isp@freebsd.org>; Tue, 19 Oct 2004 10:42:15 +0000 (GMT)
	(envelope-from spidey@act.co.za)
Received: from localhost.act.co.za ([127.0.0.1] helo=localhost)
	by mail.act.co.za with esmtp (Exim 4.24; FreeBSD 5.0)
	id 1CJrYE-0007ho-9r
	for FreeBSD-isp@freebsd.org; Tue, 19 Oct 2004 12:49:10 +0200
Received: from mail.act.co.za ([127.0.0.1])
 by localhost (mail.act.co.za [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id 29519-04 for <FreeBSD-isp@freebsd.org>;
 Tue, 19 Oct 2004 12:49:09 +0200 (SAST)
Received: from [10.0.1.11] (helo=SPIDEY)
	by mail.act.co.za with esmtp (Exim 4.24; FreeBSD 5.0)
	id 1CJr40-0006gc-20
	for FreeBSD-isp@freebsd.org; Tue, 19 Oct 2004 12:17:56 +0200
From: "Spidey Knepscheld" <spidey@act.co.za>
To: <FreeBSD-isp@freebsd.org>
Date: Tue, 19 Oct 2004 12:10:54 +0200
Organization: ACT Computers
Message-ID: <000001c4b5c3$ec9ba510$0b01000a@SPIDEY>
MIME-Version: 1.0
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook, Build 10.0.2627
Importance: Normal
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180
X-Virus-Scanned: by amavisd-new at act.co.za
Content-Type: text/plain;
	charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Content-Filtered-By: Mailman/MimeDel 2.1.1
Subject: ipfw: 65534 deny
X-BeenThere: freebsd-isp@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: spidey@act.co.za
List-Id: Internet Services Providers <freebsd-isp.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-isp>,
	<mailto:freebsd-isp-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-isp>
List-Post: <mailto:freebsd-isp@freebsd.org>
List-Help: <mailto:freebsd-isp-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-isp>,
	<mailto:freebsd-isp-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 19 Oct 2004 10:42:18 -0000

Hi Guys
 
When I restart my fw it takes between 1 to 10 min before restart it runs
a list looking like this :
 
ipfw: 65534 deny TCP or UDP x.x.x.x port x.x.x.x port in via fxp1
 
where x.x.x.x is the ip's followed by a port nr.
 
I do understand that it needs to kill the connections but runnign for
10min is too long and if I could see the ip's I can try to find the
problem parts of the network
The run is to fast for me to see what ip's are running and I would like
look at that list is it possible and if so how do I get it.
 
 
Hope this makes sense
 
 
Spidey