From owner-freebsd-questions@FreeBSD.ORG  Fri Jul 22 00:25:33 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: questions@freebsd.org
Delivered-To: freebsd-questions@FreeBSD.ORG
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 4ACFA16A423
	for <questions@freebsd.org>; Fri, 22 Jul 2005 00:25:33 +0000 (GMT)
	(envelope-from kadmin@ezekiel.daleco.biz)
Received: from ezekiel.daleco.biz (southernuniform.com [66.76.92.18])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 4829343D8B
	for <questions@freebsd.org>; Fri, 22 Jul 2005 00:25:18 +0000 (GMT)
	(envelope-from kadmin@ezekiel.daleco.biz)
Received: from ezekiel.daleco.biz (localhost [127.0.0.1])
	by ezekiel.daleco.biz (8.13.1/8.13.1) with ESMTP id j6M0NGC5094192;
	Thu, 21 Jul 2005 19:23:41 -0500 (CDT)
	(envelope-from kadmin@ezekiel.daleco.biz)
Received: (from kadmin@localhost)
	by ezekiel.daleco.biz (8.13.1/8.13.1/Submit) id j6M0Mp59094191;
	Thu, 21 Jul 2005 19:22:51 -0500 (CDT) (envelope-from kadmin)
Date: Thu, 21 Jul 2005 19:22:41 -0500
From: Kevin Kinsey <kdk@.daleco.biz>
To: gouders@et.bocholt.fh-ge.de
Message-ID: <20050722002241.GA94174@ezekiel.daleco.biz>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.4.2.1i
Cc: questions@freebsd.org
Subject: Re: ipfw and tun0
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 22 Jul 2005 00:25:33 -0000

Dirk Gouders wrote:

>Hello,
>
>I just started to use an ADSL line with PPPoE and want run a firewall
>between it and my local network.  What I am wondering about is that
>even if I only have the default everything-blocking rule (deny ip from
>any to any) I still see incoming packets on tun0 with tcpdump.
>
>Is this, because the firewall rules get checked after the packets
>leave the tun0 interface?  On what interface should I run tcpdump then
>to check if my rules are working as expected?
>
>Dirk
>


Just a guess, here .... tun0 doesn't exist when the firewall rc
script is run, so you may have to explicity state the name
of the interface since it wouldn't be listed during device
polling at boot time?

Like I said, just grasping at straws.  Maybe you've already
tried that one....

Kevin Kinsey