From owner-freebsd-questions Sat May 23 15:55:40 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id PAA16288 for freebsd-questions-outgoing; Sat, 23 May 1998 15:55:40 -0700 (PDT) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from dc1.mfn.org (dc1.mfn.org [204.238.179.1]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id PAA16267 for ; Sat, 23 May 1998 15:55:31 -0700 (PDT) (envelope-from sysadmin@mfn.org) Received: from w3svcs.mfn.org (unverified [204.238.179.11]) by mail.mfn.org (EMWAC SMTPRS 0.83) with SMTP id ; Sat, 23 May 1998 17:57:25 -0500 Received: by w3svcs.mfn.org with Microsoft Mail id <01BD8673.F38A73A0@w3svcs.mfn.org>; Sat, 23 May 1998 17:55:20 -0500 Message-ID: <01BD8673.F38A73A0@w3svcs.mfn.org> From: "J.A. Terranson" To: "'Capriotti'" , "freebsd-questions@FreeBSD.ORG" Subject: RE: IPFW and pop3/irc - loooong wait Date: Sat, 23 May 1998 17:55:18 -0500 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG > Your problem is that you are blocking IDENT requests. If you dont mind servicing these (they are very low risk services) simply allow port 113 (tcp) to function. BTW: I just found out that 113 is being widely used for some other services too: like smtp reverse lookups. We allow 113 subject to some pretty tight rules, if you like, I can send you a copy of our rulesets. J.A. Terranson sysadmin@mfn.org The following rule: # Reject&Log all setup of incoming connections from the outside $fwcmd add 300 deny log tcp from any to any in via ${oif} setup is causing pop3 (when sending msgs) and IRC (when connecting; port 6667) take too long to connect I get messages like this on the console: ipfw: 300 Deny tcp 209.104.220.13:4737 200.246.0.15:113 in via tun0 is it expected ? (I don't see why... My TCP/IP skills are not that good) In case it is, is there any workaround for this delay ? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message