From owner-freebsd-questions@freebsd.org Fri Mar 2 19:03:51 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id AFB89F3DFC2 for ; Fri, 2 Mar 2018 19:03:51 +0000 (UTC) (envelope-from starikarp@yandex.com) Received: from forward105j.mail.yandex.net (forward105j.mail.yandex.net [IPv6:2a02:6b8:0:801:2::108]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "forwards.mail.yandex.net", Issuer "Yandex CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 2D3D1731AE for ; Fri, 2 Mar 2018 19:03:50 +0000 (UTC) (envelope-from starikarp@yandex.com) Received: from mxback1j.mail.yandex.net (mxback1j.mail.yandex.net [IPv6:2a02:6b8:0:1619::10a]) by forward105j.mail.yandex.net (Yandex) with ESMTP id D7691181AB0 for ; Fri, 2 Mar 2018 22:03:47 +0300 (MSK) Received: from smtp1j.mail.yandex.net (smtp1j.mail.yandex.net [2a02:6b8:0:801::ab]) by mxback1j.mail.yandex.net (nwsmtp/Yandex) with ESMTP id AtoZc1LKWL-3kKCIvcN; Fri, 02 Mar 2018 22:03:47 +0300 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yandex.com; s=mail; t=1520017427; bh=bFlZJl5ZehIaVczjMVMRuUyUbODZ1XiIIkUVFGgpVKQ=; h=Message-ID:Subject:From:To:Date; b=h9SIRzVq8abNQRrLuGt3htNSvOfwP+cxJ2X/GrXoJ1v1bEL9B9T76Qw8CPce9ubzn korhRJfD6MUCv+HmkyMAEeuQp6ralJ5b1t+aajkW2L5rUPh9oUEYA0KRlUpeGfn0m4 pILD21X58B1XAHMoLmxklpVUueRrj4QCN9PyaE4w= Received: by smtp1j.mail.yandex.net (nwsmtp/Yandex) with ESMTPSA id NZONej7WY2-3jYW446P; Fri, 02 Mar 2018 22:03:45 +0300 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client certificate not present) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yandex.com; s=mail; t=1520017426; bh=bFlZJl5ZehIaVczjMVMRuUyUbODZ1XiIIkUVFGgpVKQ=; h=Message-ID:Subject:From:To:Date; b=LFltWrpN/t9MtPERQgbe6OK+kQ3kil5biDG/sNnDCalCycD1ptkh+ggEk+fnFXoT1 Ccy4LZR7w7Uz2Xd3mRldfmvWDf4LBa1M63TSjzSYTnKhng44ancFO8aktcH/pg5yBr xVkiYjLNx26D+FtWI+D2JCfO5b/1FYLTFQgzUTD4= Authentication-Results: smtp1j.mail.yandex.net; dkim=pass header.i=@yandex.com Message-ID: <1520017423.61823.1.camel@yandex.com> Subject: ipfw firewall block From: Stari Karp To: FreeBSD Questions Date: Fri, 02 Mar 2018 14:03:43 -0500 Content-Type: text/plain; charset="UTF-8" X-Mailer: Evolution 3.24.2 FreeBSD GNOME Team Mime-Version: 1.0 Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.25 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 02 Mar 2018 19:03:51 -0000 Hi! I am usind I start learning about IPFW firewall too but I do not know yet why it clock me: Feb 24 14:43:00 blabla kernel: ipfw: 65500 Deny UDP 192.168.1.3:59609 192.168.1.2:1900 in via bge0 Feb 24 14:43:02 blabla kernel: ipfw: 65500 Deny UDP 192.168.1.3:59610 192.168.1.2:3702 in via bge0 Feb 24 14:43:02 blabla kernel: ipfw: 65500 Deny UDP 192.168.1.3:59609 192.168.1.2:1900 in via bge0 Feb 24 14:43:02 blabla kernel: ipfw: 65500 Deny UDP 192.168.1.3:59609 192.168.1.2:1900 in via bge0 Mar 2 06:36:28 blabla kernel: ipfw: 65500 Deny UDP 192.168.1.3:55567 192.168.1.255:7 in via bge0 Mar 2 06:36:29 blabla kernel: ipfw: 65500 Deny UDP 1 92.168.1.3:55567 192.168.1.2:7 in via bge0 Mar 2 06:36:29 blabla kernel: ipfw: 65500 Deny UDP 192.168.1.3:55571 192.168.1.2:3702 in via bge0 Mar 2 06:36:29 blabla kernel: ipfw: 65500 Deny UDP 192.168.1.3:55570 192.168.1.2:1900 in via bge0 Mar 2 06:36:31 blabla last message repeated 3 times Mar 2 06:36:31 blabla kernel: ipfw: 65500 Deny UDP 192.168.1.3:55571 192.168.1.2:3702 in via bge0 I did check my firewall with nmap: nmap -sS -Pn -p- -T4 -vv --reason -oN 127.0.0 nmap.results and I got: Nmap scan report for 127.0.0 (127.0.0.0) Host is up, received user-set. All 65535 scanned ports on 127.0.0 (127.0.0.0) are filtered because of 65535 no- responses Read data files from: /usr/local/share/nmap # Nmap done at Fri Mar 2 08:43:23 2018 -- 1 IP address (1 host up) scanned in 6 764.51 seconds I did scan online too (nmap) and everything is okay. Thank you. SK