Date: Wed, 13 Nov 2002 18:31:15 -0600 From: "Charles Pelletier" <fozekizer@attbi.com> To: "Shane Hickey" <shane@howsyournetwork.com>, <freebsd-questions@freebsd.org> Subject: RE: 9th field in ipmon logs Message-ID: <ODEGKNHJNPDPKJOOAOKOIENJCCAA.fozekizer@attbi.com> In-Reply-To: <1037233201.12898.11.camel@daneel.volumen.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Charles Pelletier Tech. Coordinator St Luke's School Irving, TX > -----Original Message----- > From: owner-freebsd-questions@FreeBSD.ORG > [mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of Shane Hickey > Sent: Wednesday, November 13, 2002 6:20 PM > To: freebsd-questions@freebsd.org > Subject: 9th field in ipmon logs > > > Howdy all, I just replaced my Cisco PIX 506 firewall with a 5/66 FreeBSD > box and I'm feeling fine. I'm wading through the logs generated by > ipmon and I need to know where i can get some in-depth answers on the > 9th field (tcp flags and such). > > The man page explains a little bit and then refers you to the manpage > for ipf.conf. Well, I don't have any such manpage. Or if I do, I'm > blind. Anyway, I understand the tcp flags part, but what are the > numbers that come afterwards? > > For example, I'm guessing that an entry ending with "-A 972648548 > 385190336 53352 IN" is an ACK packet, but what do those numbers stand > for? The IN is because it is an inbound packet? > > Next I need to get my FreeBSD box to talk IPSec 3DEC to a Cisco PIX > 525. Can anyone give any pointers in that direction? > > Thanks, > > Shane > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message try here: www.obfuscation.org/ipf/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?ODEGKNHJNPDPKJOOAOKOIENJCCAA.fozekizer>