From owner-freebsd-questions Mon Nov 6 3:17:48 2000 Delivered-To: freebsd-questions@freebsd.org Received: from mailgate3.cinetic.de (mailgate3.cinetic.de [212.227.116.80]) by hub.freebsd.org (Postfix) with ESMTP id 4A81C37B4D7 for ; Mon, 6 Nov 2000 03:17:40 -0800 (PST) Received: from cinetic.de (popeye.cinetic.de [194.122.194.100]) by mailgate3.cinetic.de (8.9.3/8.9.3/SuSE Linux 8.9.3-0.1) with SMTP id MAA31514 for ; Mon, 6 Nov 2000 12:17:38 +0100 Date: Mon, 6 Nov 2000 12:17:38 +0100 Message-Id: <200011061117.MAA31514@mailgate3.cinetic.de> MIME-Version: 1.0 Organization: http://freemail.web.de/ From: "Thomas Seck" To: freebsd-questions@freebsd.org Subject: [4.1.1-stable] Problem with traceroute and ipfw Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hi all, I have encountered the following problem: I set up a slightly modified ipfw ruleset with a default deny, based on the "simple" ruleset from rc.firewall and opened udp port 33434 (the default source port for traceroute I thought). To my surprise I was not able to run a traceroute through it - the packets were always denied. Examining the logs I found out that traceroute did not use a specific source port for the outgoing queries. Even when I invoked traceroute with -P UPD and -p 33434 the source port was >35000. Each invocation incremented the port no. by one. What am I missing? I suppose I did not quite understand the way traceroute works - any suggestions are welcome. Cheers, Thomas Seck P.S: Please cc me or the list as I am not subscribed to -questions. Thanks! _______________________________________________________________________ 1.000.000 DM gewinnen - kostenlos tippen - http://millionenklick.web.de IhrName@web.de, 8MB Speicher, Verschluesselung - http://freemail.web.de To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message