Date: Thu, 16 Jan 2003 17:07:56 -0700 From: Nate Williams <nate@yogotech.com> To: Terry Lambert <tlambert2@mindspring.com> Cc: Josh Brooks <user@mail.econolodgetulsa.com>, freebsd-hackers@FreeBSD.ORG Subject: Re: FreeBSD firewall for high profile hosts - waste of time ? Message-ID: <15911.18780.353808.445869@emerger.yogotech.com> In-Reply-To: <3E2747BB.E2E34AC1@mindspring.com> References: <20030116155122.X38599-100000@mail.econolodgetulsa.com> <3E2747BB.E2E34AC1@mindspring.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> PS: I still think that if your CPU pegs, you've got a loop in there > somewhere. Most common case is a "reject" or "deny". Try changing > all of them to "drop", instead, and see if that "fixes" it. FWIW, deny == drop. The 'reject' rule is the one that sends out ICMP and RST packets. Nate To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?15911.18780.353808.445869>