From owner-freebsd-questions Thu Dec 7 10:12:38 2000 From owner-freebsd-questions@FreeBSD.ORG Thu Dec 7 10:12:36 2000 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from freeze.org (www.bellnetworks.net [208.177.187.234]) by hub.freebsd.org (Postfix) with ESMTP id D561B37B400; Thu, 7 Dec 2000 10:12:35 -0800 (PST) Received: (from jim@localhost) by freeze.org (8.9.3/8.9.3) id NAA47813; Thu, 7 Dec 2000 13:12:33 -0500 (EST) (envelope-from jim) X-Authentication-Warning: www.bellnetworks.net: Processed from queue /var/spool/alt_queue X-Authentication-Warning: www.bellnetworks.net: Processed by jim with -C /web/siteinfo/freeze/mail/sendmail.cf Date: Thu, 7 Dec 2000 13:12:29 -0500 (EST) From: Jim Freeze X-Sender: jim@www.bellnetworks.net To: Edwin Groothuis Cc: question@FreeBSD.ORG, edwin@d9168.upc-d.chello.nl, freebsd-questions@FreeBSD.ORG Subject: Re: Can no longer ssh In-Reply-To: <20001207130909.G32018@d9168.upc-d.chello.nl> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Thu, 7 Dec 2000, Edwin Groothuis wrote: > Since 4.0 (I think) there is, see your syslog.conf and the man-page > for it. That's where ipfw is logging. I am running FBSD 3.4R. ipfw is not listed in the syslog.conf file. I'll keep looking. This morning I put the divert rule back in and changed my ssh rule to be added before it. ${fwcmd} add 40 pass log tcp from any to any 22 in via ${oif} setup # ipfw show 00040 2 88 allow log logamount 100 tcp from any to any 22 in recv vx0 setup 00100 6155 3594957 divert 8668 ip from any to any via vx0 00150 0 0 allow ip from any to any via lo0 ... Now I get the network and ssh. BUT..., I have not seen this done in any of the published configurations. Can someone shed some light here? ==================================================== Jim Freeze jim@freeze.org --------------------------------------------------- ** http://www.freeze.org ** ==================================================== To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message