From owner-freebsd-questions Wed Sep 18 21:20:54 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3C4F837B401 for ; Wed, 18 Sep 2002 21:20:53 -0700 (PDT) Received: from whoweb.com (whoweb.com [208.146.132.20]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9AB6543E6A for ; Wed, 18 Sep 2002 21:20:52 -0700 (PDT) (envelope-from mailist@whoweb.com) Received: (from mailist@localhost) by whoweb.com (8.8.8/8.8.6) id AAA02137; Thu, 19 Sep 2002 00:24:09 -0400 (EDT) Date: Thu, 19 Sep 2002 00:24:09 -0400 (EDT) From: Incoming Mail List Message-Id: <200209190424.AAA02137@whoweb.com> To: dfolkins@comcast.net, mailist@whoweb.com, questions@freebsd.org Subject: Re: ipfw rulesets Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG >a return packet is like this "FROM any port 23 TO any >host [certain port range]". notice that this return packet is not going to >be let through by the firewall, and therefore you will not be able to get >the telnet session going. I tried this and it worked. Is there a reason you didn't think it would? allow tcp from any to any 23 allow tcp from any 23 to any That led me to replacing the above rules with the following single rule, which did not work. But I don't know why. Can you explain? allow tcp from any 23 to any 23 When an remote host attempts to make a telnet connection on my host, isn't it classified as coming from port 23 on the remote host? Jon To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message