From owner-freebsd-security@FreeBSD.ORG Fri Apr 25 11:01:39 2003 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 07DF437B401 for ; Fri, 25 Apr 2003 11:01:39 -0700 (PDT) Received: from mx1.lphp.org (APastourelles-107-1-17-67.abo.wanadoo.fr [81.48.127.67]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5723143FA3 for ; Fri, 25 Apr 2003 11:01:37 -0700 (PDT) (envelope-from ajacoutot@lphp.org) Received: from sta01 (sta01.lphp.org.local [192.168.0.4]) by mx1.lphp.org (8.12.8p1/8.12.8) with ESMTP id h3PI1Zut021756; Fri, 25 Apr 2003 20:01:35 +0200 (CEST) (envelope-from ajacoutot@lphp.org) From: Antoine Jacoutot To: twig les , freebsd-security@freebsd.org Date: Fri, 25 Apr 2003 20:01:36 +0200 User-Agent: KMail/1.5.1 References: <20030425174806.92494.qmail@web10107.mail.yahoo.com> In-Reply-To: <20030425174806.92494.qmail@web10107.mail.yahoo.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200304252001.36568.ajacoutot@lphp.org> Subject: Re: firewalling help/audit X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 25 Apr 2003 18:01:39 -0000 On Friday 25 April 2003 19:48, twig les wrote: > I'm no ipfw guru, but you seem to have a bunch of duplicate > rules in the 2nd 1918 and draft-manning-dsua-03 sections. Well, I just followed what was in /etc/rc.firewall, they duplicate the rules when there's NAT. Thanks. Antoine