From owner-freebsd-stable Wed Dec 18 11:28: 4 2002 Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6A19037B401 for ; Wed, 18 Dec 2002 11:28:03 -0800 (PST) Received: from malasada.lava.net (malasada.lava.net [64.65.64.17]) by mx1.FreeBSD.org (Postfix) with ESMTP id F0C2F43ED1 for ; Wed, 18 Dec 2002 11:28:02 -0800 (PST) (envelope-from cliftonr@lava.net) Received: from localhost (1500 bytes) by malasada.lava.net; Wed, 18 Dec 2002 09:27:55 -1000 (HST) via sendmail [stdio] id for Date: Wed, 18 Dec 2002 09:27:53 -1000 From: Clifton Royston To: "Robin P. Blanchard" Cc: stable@freebsd.org Subject: Re: ipfilter / ipnat quandry Message-ID: <20021218092753.E4007@lava.net> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: ; from robin.blanchard@gactr.uga.edu on Wed, Dec 18, 2002 at 02:25:21PM -0500 Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Wed, Dec 18, 2002 at 02:25:21PM -0500, Robin P. Blanchard wrote: > Well...After a bit of trial and error with my ruleset I've determined > that commenting out the entires in the below stanza cause nmap to report > as expected (only port 22 is open. Is this by design? The commented > entries are directly out of the IPF faq. ??? > > Robin. Does nmap now show all other TCP ports as "filtered" or as "closed"? -- Clifton -- Clifton Royston -- LavaNet Systems Architect -- cliftonr@lava.net "If you ride fast enough, the Specialist can't catch you." "What's the Specialist?" Samantha says. "The Specialist wears a hat," says the babysitter. "The hat makes noises." She doesn't say anything else. Kelly Link, _The Specialist's Hat_ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message