From owner-freebsd-questions  Fri Nov  9  4:48: 1 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from relay3-gui.server.ntli.net (relay3-gui.server.ntli.net [194.168.4.200])
	by hub.freebsd.org (Postfix) with ESMTP id 356AA37B420
	for <questions@freebsd.org>; Fri,  9 Nov 2001 04:47:59 -0800 (PST)
Received: from pc3-card3-0-cust122.cdf.cable.ntl.com
	([62.254.251.122] helo=rhadamanth.private.submonkey.net ident=exim)
	by relay3-gui.server.ntli.net with esmtp (Exim 3.03 #2)
	id 162B4e-0001uw-00; Fri, 09 Nov 2001 12:47:56 +0000
Received: from setantae by rhadamanth.private.submonkey.net with local (Exim 3.33 #1)
	id 162B3r-00073p-00; Fri, 09 Nov 2001 12:47:07 +0000
Date: Fri, 9 Nov 2001 12:47:07 +0000
From: setantae <setantae@submonkey.net>
To: cjclark@alum.mit.edu
Cc: questions@FreeBSD.ORG
Subject: Re: too many dynamic rules
Message-ID: <20011109124707.GC26931@rhadamanth>
References: <20011108201207.GA49594@rhadamanth> <20011109024142.Q51134@blossom.cjclark.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20011109024142.Q51134@blossom.cjclark.org>
User-Agent: Mutt/1.3.23.1i
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

On Fri, Nov 09, 2001 at 02:41:42AM -0800, Crist J. Clark wrote:
> On Thu, Nov 08, 2001 at 08:12:07PM +0000, setantae wrote:
> > 
> > For approximately 18 seconds today my firewall went apesh*t 
> >  (these are all relevant entries) :
> > 
> > Nov  8 14:47:45 rhadamanth /kernel: Too many dynamic rules, sorry
> > Nov  8 14:47:45 rhadamanth natd[218]: failed to write packet back (Permission denied)
> 
> > At the time there was only one user logged onto the box, and no clients
> > behind the firewall - unfortunately I have no idea what I was doing at the
> > time,
> 
> You wouldn't have happened to have been port scanning someone (nmap or
> the like)?

My God, Holmes, how do you do it ?
Now that you mention it, I think I was...

That explains it, thanks!

Ceri

-- 
keep a mild groove on

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message