From owner-freebsd-questions@FreeBSD.ORG  Mon Oct  2 15:22:16 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id DF88516A47B
	for <freebsd-questions@freebsd.org>;
	Mon,  2 Oct 2006 15:22:16 +0000 (UTC) (envelope-from vdemart1@tin.it)
Received: from vsmtp2.tin.it (vsmtp2.tin.it [212.216.176.222])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 5E34343D4C
	for <freebsd-questions@freebsd.org>;
	Mon,  2 Oct 2006 15:22:16 +0000 (GMT) (envelope-from vdemart1@tin.it)
Received: from pswm7.cp.tin.it (192.168.70.27) by vsmtp2.tin.it (7.2.072.1)
	id 451AB62000253891 for freebsd-questions@freebsd.org;
	Mon, 2 Oct 2006 17:22:13 +0200
Message-ID: <10e099e37d6.vdemart1@tin.it>
Date: Mon, 2 Oct 2006 16:22:13 +0100 (GMT+01:00)
From: Vittorio <vdemart1@tin.it>
To: freebsd-questions@freebsd.org
Mime-Version: 1.0
Content-Type: text/plain;charset="UTF-8"
Content-Transfer-Encoding: 7bit
X-Originating-IP: 194.185.25.72
Subject: ipfw & cups
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: Vittorio <vdemart1@tin.it>
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Oct 2006 15:22:17 -0000

To my ipfw firewall I have added, according to what I found in the 
internet, the following rule to allow the use of cupsd on the same box:

00520 allow ip from any to any dst-port 631 in

to no avail because it 
is not even checked as you can see below from the log (obtained from 
kde kcontrol center trying (and failing) to display the connected cups' 
printers):

Am I missing something?
What should I do?
Ciao
Vittorio
......................................
NbBSD# ipfw -td list
00500                         check-state
00501 Mon Oct  2 17:10:13 
2006 deny tcp from any to any established
00502                         
deny ip from any to any frag
00503 Mon Oct  2 17:10:13 2006 allow ip 
from any to any via lo0
00514                         deny ip from any 
to any not verrevpath in
00520                         allow ip from 
any to any dst-port 631 in
00525                         deny ip from 
any to 127.0.0.0/8
.......................................................................
.......................................................................
00609                         allow tcp from 10.155.102.6 1491 to any
00610                         allow tcp from me to any dst-port 53 out 
via fxp0 keep-state
00612                         allow udp from me to 
any dst-port 53 out via fxp0 keep-state
00700                         
allow icmp from 10.155.0.0/16 to any via fxp0
65535 Mon Oct  2 17:10:13 
2006 deny ip from any to any