From owner-freebsd-questions Thu Mar 6 6: 7:52 2003 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id ADC4437B401 for ; Thu, 6 Mar 2003 06:07:50 -0800 (PST) Received: from pa-plum1b-166.pit.adelphia.net (pa-plum1b-13.pit.adelphia.net [24.53.161.13]) by mx1.FreeBSD.org (Postfix) with ESMTP id A207C43F85 for ; Thu, 6 Mar 2003 06:07:49 -0800 (PST) (envelope-from wmoran@potentialtech.com) Received: from potentialtech.com (working [172.16.0.95]) by pa-plum1b-166.pit.adelphia.net (8.12.7/8.12.7) with ESMTP id h26E7jTb001812; Thu, 6 Mar 2003 09:07:45 -0500 (EST) (envelope-from wmoran@potentialtech.com) Message-ID: <3E675628.2090205@potentialtech.com> Date: Thu, 06 Mar 2003 09:07:36 -0500 From: Bill Moran User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.2.1) Gecko/20030301 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Aaron Walker Cc: freebsd-questions@freebsd.org Subject: Re: please help: nntp and gaming with ipfw References: <1046954586.2146.124.camel@ka0ttic> In-Reply-To: <1046954586.2146.124.camel@ka0ttic> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Aaron Walker wrote: > I have FreeBSD 4.7 running on my old p100 setup as a firewall.. > everything works except for 2 things: nntp (it somewhat works) and > playing a game through the firewall from a windows box (battlefield 1942 > specifically) > > With nntp I can view newsgroups but I get a lot of lag.. more like it > freezes.. in mozilla mail when I click on a message on a newsgroup, it > just sits there and says "Loading document..." in the status bar. > Sometimes it works, but the majority of the time I have that problem I > know it is not mozilla that is the problem because I can produce it on > my windows box with other news clients. Here is the output of "ipfw > show | grep 119" > > 00425 30925 1359340 allow tcp from any to any 119 keep-state out > xmit ep0 setup > 00426 0 0 allow udp from any to any 119 keep-state out > xmit ep0 > 00605 0 0 allow tcp from any 119 to any keep-state in recv > ep0 setup > 00606 0 0 allow udp from any 119 to any keep-state in recv > ep0 > > if its not the firewall and these rules are ok, then what else could it > be? I have no idea. There's no way to tell if those rules are OK without the rest of the firewall rules. Are they before or after your divert rule? Are there rules before them that could be cacthing traffic and handling it wrong? > With Battlefield 1942.. it uses port 14567. I cant get this to work at > all. > > I have the following in my firewall rules: > > 00335 0 0 allow tcp from any 14567 to any keep-state out xmit ep0 setup > > 00336 0 0 allow udp from any 14567 to any keep-state out xmit ep0 > > 00620 0 0 allow tcp from any to any 14567 keep-state in recv ep0 setup > > 00621 0 0 allow udp from any to any 14567 keep-state in recv ep0 Same problem ... it's almost impossible to diagnose ifpw problems without the entire ipfw ruleset. > any ideas what's wrong with these rules? I can give you 1000 guesses ... > any help is greatly appreciated. Please post the entire ruleset as well as the output from ifconfig. Then we'll have enough information to make some guesses as to what's wrong. -- Bill Moran Potential Technologies http://www.potentialtech.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message