From owner-freebsd-questions Thu Jan 11 3:10: 8 2001 Delivered-To: freebsd-questions@freebsd.org Received: from mail.chartermi.net (mail.chartermi.net [24.213.60.74]) by hub.freebsd.org (Postfix) with ESMTP id 14FB237B401 for ; Thu, 11 Jan 2001 03:09:51 -0800 (PST) Received: from Q ([24.247.31.102]) by mail.chartermi.net (Post.Office MTA v3.5.3 release 223 ID# 0-70107U32242L18562S0V35) with ESMTP id net for ; Thu, 11 Jan 2001 06:09:34 -0500 Message-Id: <4.2.2.20010111055046.00b415d0@mail.chartermi.net> X-Sender: stanny@mail.chartermi.net X-Mailer: QUALCOMM Windows Eudora Pro Version 4.2.2 Date: Thu, 11 Jan 2001 06:09:28 -0500 To: questions@freebsd.org From: Gary Stanny Subject: why does the kernel reject a napster packet when the firewall says pass it? Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Maybe I'm confused but it looks like the kernel is rejecting packets that the firewall should be allowing. I have a napster pass rule in the firewall - 03200 allow tcp from xxx.yyy.zzz.174 110 to any 03300 allow tcp from any to any 6699 03400 deny log logamount 100 tcp from any to any in recv rl1 setup but the syslog shows - Jan 11 05:43:54 kennyu /kernel: Connection attempt to TCP xxx.yyy.zzz.142:6699 from 204.42.253.18:45058 Jan 11 05:46:35 kennyu /kernel: Connection attempt to TCP xxx.yyy.zzz.142:6699 from 204.42.253.18:45192 Jan 11 05:49:40 kennyu /kernel: Connection attempt to TCP xxx.yyy.zzz.142:6699 from 204.42.253.18:45271 and here's what I see from a remote box - freenet.ther.net% telnet xxx.yyy.zzz.142 6699 Trying xxx.yyy.zzz.142... telnet: Unable to connect to remote host: Connection refused freenet.ther.net% What's going on here ??? Please also cc to me direct since I get the list in digest and I'm hacking now :-) TIA cheers gary Gary Stanny Tierra del Fuego Ltd. www.TDFltd.com stanny@TDFltd.com Financial Software 734-449-8306 (voice/fax) 7725 Shady Beach Dr Whitmore Lake, MI, 48189 USA To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message