From owner-freebsd-ipfw@FreeBSD.ORG  Thu May 29 11:14:45 2003
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
Delivered-To: freebsd-ipfw@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id F02F437B404
	for <freebsd-ipfw@freebsd.org>; Thu, 29 May 2003 11:14:45 -0700 (PDT)
Received: from genua.rfc-networks.ie (genua.rfc-networks.ie [62.77.182.178])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 8ACF443FCB
	for <freebsd-ipfw@freebsd.org>; Thu, 29 May 2003 11:14:44 -0700 (PDT)
	(envelope-from philip.reynolds@rfc-networks.ie)
Received: from tear.domain (unknown [10.0.1.254])
	by genua.rfc-networks.ie (Postfix) with ESMTP id 480F554F4A
	for <freebsd-ipfw@freebsd.org>; Thu, 29 May 2003 19:14:43 +0100 (IST)
Received: by tear.domain (Postfix, from userid 1000)
	id A126721150; Thu, 29 May 2003 18:14:42 +0000 (GMT)
Date: Thu, 29 May 2003 18:14:42 +0000
From: Philip Reynolds <philip.reynolds@rfc-networks.ie>
To: freebsd-ipfw@freebsd.org
Message-ID: <20030529181442.GA24554@rfc-networks.ie>
References: <1053676087.95fbe1caf5dcd@www.dannysplace.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <1053676087.95fbe1caf5dcd@www.dannysplace.com>
X-Operating-System: FreeBSD 4.7-STABLE
X-URL: http://www.rfc-networks.ie
Subject: Re: Strange natd problem.
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: philip.reynolds@rfc-networks.ie
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 29 May 2003 18:14:46 -0000

danny@dannysplace.net 69 lines of wisdom included:
> Here is the strange bit...
> rule 100 matches and (re-inserts)
> rules 200 never match
> rules 300 match and allow the quake packets through.
> 
> I've tried the following protocols specifically.  tcp,udp,icmp
> But it will ONLY match when I say "ip"
> 
> So could it be that the firewall on my home lan does something with natd, then
> the firewall on the quake servers lan does something *else* to the packets
> there by screwing them up?
> 
> Or does quake just use some strange ip protocol?.

Does it not use IPX/SPX

-- 
Philip Reynolds                      | RFC Networks Ltd.
philip.reynolds@rfc-networks.ie      | +353 (0)1 8832063
http://people.rfc-networks.ie/~phil  | www.rfc-networks.ie