From owner-freebsd-questions Wed Mar 20 13:36:16 2002 Delivered-To: freebsd-questions@freebsd.org Received: from tninet.se (sheridan.tninet.se [195.100.94.102]) by hub.freebsd.org (Postfix) with ESMTP id 0C81D37B400 for ; Wed, 20 Mar 2002 13:36:11 -0800 (PST) Received: from cs.umu.se (h27n1c1o1023.bredband.skanova.com [213.64.164.27]) by sheridan.tninet.se (BMR ErlangTM/OTP 3.0) with ESMTP id 931944.660160.1016.0s12516709sheridan ; Wed, 20 Mar 2002 22:36:00 +0100 Message-ID: <3C9900C1.DB3A632D@cs.umu.se> Date: Wed, 20 Mar 2002 22:36:01 +0100 From: Paul Everlund X-Mailer: Mozilla 4.77 [en] (Windows NT 5.0; U) X-Accept-Language: sv,en MIME-Version: 1.0 To: Paulius Bulotas Cc: freebsd-questions@FreeBSD.ORG Subject: Re: ipfw rules References: <3C992774.D763B085@froekjaer.org> <200203201744.15491@silver.dt1.binity.net> <20020320194803.GA88168@kaktusas.org> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Paulius Bulotas wrote: > > On 02 03 20, Walter Hop wrote: > > ipfw add 03300 allow udp from me to 194.109.6.66 53 keep-state via tun0 > > ipfw add 03301 allow udp from me to 194.109.9.99 53 keep-state via tun0 > > possibly I could be wrong, but does udp supports keep-state? udp is > connectionless protocol, as far as I remember ;) so these rules are > wrong (but still could be working, just keep-state is not useful?) Keep state should work, even if it's a connectionless protocol. Setup will on the other hand not work. Keep state checks IP-addresses and ports so therefore it will work even with UDP. Best regards, Paul To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message