From owner-freebsd-net  Sat Feb  2 12:55:10 2002
Delivered-To: freebsd-net@freebsd.org
Received: from artemis.drwilco.net (diana.drwilco.net [66.48.127.79])
	by hub.freebsd.org (Postfix) with ESMTP id C5B4837B440
	for <freebsd-net@FreeBSD.ORG>; Sat,  2 Feb 2002 12:53:30 -0800 (PST)
Received: from ceres.drwilco.net (docwilco.xs4all.nl [213.84.68.230])
	by artemis.drwilco.net (8.11.6/8.11.6) with ESMTP id g12KrIi32650
	(using TLSv1/SSLv3 with cipher DES-CBC3-SHA (168 bits) verified NO);
	Sat, 2 Feb 2002 15:53:20 -0500 (EST)
	(envelope-from drwilco@drwilco.net)
Message-Id: <5.1.0.14.0.20020202215924.01b9e248@mail.drwilco.net>
X-Sender: lists@mail.drwilco.net
X-Mailer: QUALCOMM Windows Eudora Version 5.1
Date: Sat, 02 Feb 2002 22:03:08 +0100
To: "R.P. Aditya" <aditya@grot.org>
From: "Rogier R. Mulhuijzen" <drwilco@drwilco.net>
Subject: Re: Weird path MTU autodiscovery problem in 4.5-RELEASE
Cc: Shaun Jurrens <shaun@shamz.net>, freebsd-net@FreeBSD.ORG,
	Alexey Luckyanchikov <alexl@alkar.net>
In-Reply-To: <20020202200729.GA22083@mighty.grot.org>
References: <5.1.0.14.0.20020202202155.01b9e390@mail.drwilco.net>
 <20020202191943.B65253@atreides.freenix.no>
 <5.1.0.14.0.20020202202155.01b9e390@mail.drwilco.net>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format=flowed
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

At 12:07 2-2-2002 -0800, R.P. Aditya wrote:
>On Sat, Feb 02, 2002 at 08:32:49PM +0100, Rogier R. Mulhuijzen wrote:
> > ICMP is an IP protocol, if the very first rule in IPFW is 'allow ip from
> > any to any' then ICMP is allowed.
>
>uh, that might be ipfw-speak (I don't use or pretend to know ipfw) but ICMP is
>NOT "part" of IP (that would defeat the whole purpose of using it as a control
>protocol for IP). Look at /etc/protocols:
>
>ip      0       IP              # internet protocol, pseudo protocol number
>icmp    1       ICMP            # internet control message protocol

1) /etc/protocols to my knowledge lists IP-protocols... note that 0 is a 
PSEUDO protocol number. TCP and UDP are listed further down, those are IP 
protocols. IPv6 that's listed there is 6over4 packets to my knowledge.
2) Even if this were not the case, in IPFW if you allow ip, you allow all. 
'all' is nothing but an alias for 'ip'

         Doc


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message