Skip site navigation (1)Skip section navigation (2)
Date:      Fri, 10 Nov 2000 14:33:52 +1100
From:      Zero Sum <count@shalimar.net.au>
To:        freebsd-questions@freebsd.org
Subject:   ipfw firewall question
Message-ID:  <00111014335204.00417@shalimar.net.au>
In-Reply-To: <01ef01c04ac5$8abe1660$0200000a@vladsempire.net>
References:  <BA5D0CE1CBB2D411B6AA00A0CC3F02390AF701@ldcmsx01.lc.ca.gov> <01ef01c04ac5$8abe1660$0200000a@vladsempire.net>

next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE-----


I have the following ipfw firewall rules...

01100 allow udp from 198.142.161.98 to 203.2.75.132 53 out xmit tun0
01200 allow udp from 198.142.161.98 to 203.2.75.108 53 out xmit tun0
01300 allow udp from 203.2.75.132 53 to 198.142.161.98 in recv tun0
01400 allow udp from 203.2.75.108 53 to 198.142.161.98 in recv tun0

But my log shows....

ipfw: 65435 Deny UDP 198.142.161.98:1024 202.2.75.132:53 out via tun0

The first of the DNS rules should allow any port from 198.142.161.98 to
203.3.75.132 port 53 should it not?

What am I not understanding?

Geoff
--
count@shalimar.net.au
Nihil curo de ista tua stulta superstitione


-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 5.0i for non-commercial use
MessageID: 0Sr+7L5Ke3gcior2XYC8X4yQeCQ2P51E

iQA/AwUBOgtsoPh4xz7LU/evEQJ8wgCeIdwFvw+NOrsU2q+tDCKrNNYXk2kAn1xX
B3UyNMhZfQzF4darUfGk/x4m
=S7+O
-----END PGP SIGNATURE-----


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?00111014335204.00417>