Date: Sat, 29 May 2004 08:37:10 -0700 From: Saint Aardvark the Carpeted <aardvark@saintaardvarkthecarpeted.com> To: Gregory Edigarov <greg@profi.kharkov.ua> Cc: freebsd-questions@freebsd.org Subject: Re: ipfw, 2 scripts Message-ID: <20040529153709.GA32005@hardesty.saintaardvarkthecarpeted.com> In-Reply-To: <20040528092221.GA9593@profi.kharkov.ua> References: <20040528092221.GA9593@profi.kharkov.ua>
next in thread | previous in thread | raw e-mail | index | archive | help
Gregory Edigarov disturbed my sleep to write: > bellow you will find 2 ipfw scripts, first one working, and second > is a very good looking, but not working. > what am I missing in the second script? Hm...one thing missing in script 2 is something to allow traffic via localhost. Another difference I can see is that in script 2, you're denying all from 10.0.0.0/8 to 195.5.17.86 -- in script one, it says deny to tun0. Is it possible this is denying all packets from the 10.100.105.0/24 network you mentioned? That said, I'm guessing. It'd help if you could tell me what interfaces you have, their IP addresses, and what exactly is failing. -- Saint Aardvark the Carpeted aardvark@saintaardvarkthecarpeted.com Because the plural of Anecdote is Myth.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040529153709.GA32005>