Date: Sat, 2 Feb 2002 02:38:36 -0600 (CST) From: Bovine Unit #243 <bov243@yahoo.com> To: cjclark@alum.mit.edu Cc: FreeBSD Questions <freebsd-questions@FreeBSD.ORG> Subject: Re: reset TCP in ipfw Message-ID: <Pine.BSF.4.43.0202020237240.64259-100000@kristen.shadowdale.net> In-Reply-To: <20020131213029.I152@gohan.cjclark.org>
next in thread | previous in thread | raw e-mail | index | archive | help
> > ... > > 10000 divert 6668 ip from any to any via fxp0 > > ... > > 49990 reset tcp log from any to any in recv fxp0 > > 49999 deny tcp log from any to any in recv fxp0 > > > > Well, the problem with that reset is that it's being blocked by the very > > next rule. Dang! I did not know firewall would block its own action. > > Hmm... > > Hmmm? How is the firewall blocking its own action? I'm not sure if you > are interpreting your logs correctly. I don't see how anything could > ever match rule 49999. Woo. Me bad! That rule should read: 49999 deny tcp log from any to any via fxp0 My fingers slipped. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.43.0202020237240.64259-100000>