From owner-freebsd-stable  Mon Mar  9 19:23:13 1998
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id TAA21347
          for freebsd-stable-outgoing; Mon, 9 Mar 1998 19:23:13 -0800 (PST)
          (envelope-from owner-freebsd-stable@FreeBSD.ORG)
Received: from granite.sentex.net (granite.sentex.ca [199.212.134.1])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id TAA20931
          for <stable@FreeBSD.ORG>; Mon, 9 Mar 1998 19:21:41 -0800 (PST)
          (envelope-from mike@sentex.net)
Received: from gravel (gravel-remoteh.sentex.ca [207.245.212.157]) by granite.sentex.net (8.8.6/8.6.9) with SMTP id VAA16222 for <stable@FreeBSD.ORG>; Mon, 9 Mar 1998 21:53:14 -0500 (EST)
Message-Id: <3.0.2.32.19980309214144.00c75100@sentex.net>
X-Sender: mdtancsa@sentex.net
X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.2 (32)
Date: Mon, 09 Mar 1998 21:41:44 -0500
To: stable@FreeBSD.ORG
From: Mike Tancsa <mike@sentex.net>
Subject: ipfw unreach statement help
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk

On a FreeBSD 2.2-980304-SNAP machine, I added the following

ipfw add 02007 unreach 13 log icmp from any to any in recv ed0 icmptype 8

which shows up as
02007          7        588 unreach filter-prohib log icmp from any to any
in recv ed0 icmptype 8  


But when I ping the host from the outside, I dont get an ICMP message back
that its blocked by a filter as I do when ping a different non-FreeBSD
hosts (e.g.)

36 bytes from cn-onet.uwaterloo.ca (129.97.144.1): Communication prohibited
by filter
Vr HL TOS  Len   ID Flg  off TTL Pro  cks      Src      Dst
 4  5  00 5400 d4ac   0 0000  f6  01 b217 207.245.239.1  129.97.42.10


Thanks,

	---Mike
**********************************************************************
Mike Tancsa  (mike@sentex.net)           * To do is to be  -- Nietzsche
Sentex Communications Corp,              * To be is to do  -- Sartre 
Cambridge, Ontario                       * Do be do be do  -- Sinatra
(http://www.sentex.net/~mdtancsa)        *

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message