From owner-freebsd-questions@FreeBSD.ORG  Wed Sep 21 21:30:37 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 3C03616A41F
	for <freebsd-questions@freebsd.org>;
	Wed, 21 Sep 2005 21:30:37 +0000 (GMT)
	(envelope-from annkok2001@yahoo.com)
Received: from web53315.mail.yahoo.com (web53315.mail.yahoo.com
	[206.190.49.105])
	by mx1.FreeBSD.org (Postfix) with SMTP id AA5C343D46
	for <freebsd-questions@freebsd.org>;
	Wed, 21 Sep 2005 21:30:36 +0000 (GMT)
	(envelope-from annkok2001@yahoo.com)
Received: (qmail 64295 invoked by uid 60001); 21 Sep 2005 21:30:36 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com;
	h=Message-ID:Received:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding;
	b=K/vBwKfc3GdZ8QJN9VmulRTHAJCvIo0+wvsd/N+3E+E9oGcKVS2r2uOoX0Nq7v+tf5vD7fSvfidTBJSea1c95VuqQvm3rjsUd7vn1SLZxul/LdOvPuU7iSzS3X9iR8VZe6Vq0en3aSsXWd8zXeydaJHSeEy/rPfreHjIV5x88VM=
	; 
Message-ID: <20050921213036.64293.qmail@web53315.mail.yahoo.com>
Received: from [66.49.254.13] by web53315.mail.yahoo.com via HTTP;
	Wed, 21 Sep 2005 14:30:35 PDT
Date: Wed, 21 Sep 2005 14:30:35 -0700 (PDT)
From: ann kok <annkok2001@yahoo.com>
To: Lowell Gilbert <freebsd-questions-local@be-well.ilk.org>,
	freebsd-questions@freebsd.org
In-Reply-To: <44aci6b0e3.fsf@be-well.ilk.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
Cc: 
Subject: Re: pls help for ipfw
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 21 Sep 2005 21:30:37 -0000

thank you for your mail

I tried add-state but

ipfw: unrecognised option [-1] add-state

--- Lowell Gilbert
<freebsd-questions-local@be-well.ilk.org> wrote:

> Charles Swiger <cswiger@mac.com> writes:
> 
> > On Sep 21, 2005, at 4:20 PM, ann kok wrote:
> > > my rules:
> > >
> > > ipfw add allow udp from any to tftpserverip
> > > ipfw add allow udp from tftpserverip to any
> > >
> > > In the freebsd box, I can access tftp server but
> > > internal users is hanging in the "get" state
> > 
> > TFTP may also use TCP:
> > 
> > % grep tftp /etc/services
> > tftp             69/udp     # Trivial File
> Transfer
> > tftp             69/tcp     # Trivial File
> Transfer
> 
> Except that it doesn't.  The port is reserved to
> avoid confusion, but
> the TFTP protocol doesn't run on TCP.
> 
> NAT is probably hanging things up.  I think that all
> that's needed is
> to "add-state" on the outgoing TFTP rule.
> 
> -- 
> Lowell Gilbert, embedded/networking software
> engineer, Boston area
> 		http://be-well.ilk.org/~lowell/
> 


__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com