From owner-freebsd-questions  Fri Feb 12 14:49:00 1999
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id OAA18265
          for freebsd-questions-outgoing; Fri, 12 Feb 1999 14:49:00 -0800 (PST)
          (envelope-from owner-freebsd-questions@FreeBSD.ORG)
Received: from dax.belen.k12.nm.us (dax.belen.k12.nm.us [206.206.121.10])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA18257
          for <freebsd-questions@FreeBSD.ORG>; Fri, 12 Feb 1999 14:48:58 -0800 (PST)
          (envelope-from wildcard@dax.belen.k12.nm.us)
Received: from localhost (wildcard@localhost)
	by dax.belen.k12.nm.us (8.9.2/8.8.7) with SMTP id PAA03201;
	Fri, 12 Feb 1999 15:50:40 -0700 (MST)
	(envelope-from wildcard@dax.belen.k12.nm.us)
Date: Fri, 12 Feb 1999 15:50:40 -0700 (MST)
From: wildcardus freakis <wildcard@dax.belen.k12.nm.us>
To: Dan Busarow <dan@dpcsys.com>
cc: freebsd-questions@FreeBSD.ORG
Subject: Re: Queer Behavior...
In-Reply-To: <Pine.BSF.3.96.990212143629.18537E-100000@java.dpcsys.com>
Message-ID: <Pine.BSF.3.96.990212154644.2038B-100000@dax.belen.k12.nm.us>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG


This is prolly too much info to post to a reader group but here is the
layout of my network


				206.206.121.1 router
					|
					|
					|
					-----206.206.121.11 WEB/PROXY
					|
					|	
				206.206.121.42 DNS/NAT/FIREWALL
				192.168.1.1
					|
					|
					|
		|----------------------------------------------|
			|			OTHER 
			|			CLASS B
		    192.168.1.2			MACHINES
		       Mail

On Fri, 12 Feb 1999, Dan Busarow wrote:

> On Fri, 12 Feb 1999, wildcardus freakis wrote:
> > #$fwcmd add 0556 deny log tcp from any to ${oip} 11
> > #$fwcmd add 0557 deny log udp from any to ${oip} 11
> > #$fwcmd add 0558 deny log tcp from any to ${oip} 37
> > #$fwcmd add 0559 deny log udp from any to ${oip} 37
> > #$fwcmd add 0660 allow udp from any to ${oip} 123
> > #$fwcmd add 0660 allow tcp from 192.168.1.2 to ${oip}
> > #$fwcmd add 0660 allow tcp from 206.206.121.11:8080 to ${oip}
> > #$fwcmd add 0660 allow udp from 206.206.121.11:8080 to ${oip}
> > #$fwcmd add 0660 deny log tcp from any to ${oip} 109-1079
> > #$fwcmd add 0661 deny log udp from any to ${oip} 109-1079
> > #$fwcmd add 0662 deny log tcp from any to ${oip} 4000-5999
> > #$fwcmd add 0663 deny log udp from any to ${oip} 4000-5999
> > #$fwcmd add 0664 deny log tcp from any to ${oip} 6000-49999
> > #$fwcmd add 0665 deny log udp from any to ${oip} 6000-49999
> > 
> > ok.  When I loaded these rules in every windows machine in my domain came
> > up with this error...and obviously could not access the web or anything
> > inc. telnet to other domains:
> > 
> > Fatal Exception 0E has occured at somestupidmemadd in VXD MSTCP(01) +
> > 000092F7
> 
> Running a samba server on that box (or behind it) ?
> Try opening up 137, 138 and 139 for SMB services.
> 
> Dan
> -- 
>  Dan Busarow                                                  949 443 4172
>  Dana Point Communications, Inc.                            dan@dpcsys.com
>  Dana Point, California  83 09 EF 59 E0 11 89 B4   8D 09 DB FD E1 DD 0C 82
> 


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message