From owner-freebsd-hackers  Thu Aug 29 11:58:50 2002
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id 278A637B400; Thu, 29 Aug 2002 11:58:47 -0700 (PDT)
Received: from bast.unixathome.org (bast.unixathome.org [216.187.105.150])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id 8314A43E4A; Thu, 29 Aug 2002 11:58:46 -0700 (PDT)
	(envelope-from dan@langille.org)
Received: from wocker (wocker.unixathome.org [192.168.0.99])
	by bast.unixathome.org (Postfix) with ESMTP
	id 9FCD53F28; Thu, 29 Aug 2002 14:58:45 -0400 (EDT)
From: "Dan Langille" <dan@langille.org>
To: Gregory Neil Shapiro <gshapiro@FreeBSD.ORG>
Date: Thu, 29 Aug 2002 14:56:54 -0400
MIME-Version: 1.0
Subject: Re: why does this sendmail connection take so long?
Cc: freebsd-hackers@FreeBSD.ORG
Message-ID: <3D6E3636.1618.8EFD7F55@localhost>
In-reply-to: <15726.27919.697656.805253@horsey.gshapiro.net>
References: <3D6E30B3.17308.8EE7F989@localhost>
X-mailer: Pegasus Mail for Windows (v4.02)
Content-type: text/plain; charset=US-ASCII
Content-transfer-encoding: 7BIT
Content-description: Mail message body
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-hackers.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-hackers>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-hackers>
X-Loop: FreeBSD.ORG

On 29 Aug 2002 at 11:50, Gregory Neil Shapiro wrote:

> dan> I am using ipf with "pass out from any to any/pass out from any to 
> dan> any".
> 
> Unfortunately, I use ipfw/ip6fw so I don't know if my guesses are correct.
> 
> That rule only appears to handle outbound connections (therefore allowing
> the sendmail client to open an outbound connection to the localhost
> sendmail server).  It does not allow for inbound connections (thereby
> allowing the incoming connection).  Perhaps what you need is also:
> 
> echo 'pass in quick on lo0' > /etc/ipf6.rules
> echo 'pass out quick on lo0' >> /etc/ipf6.rules
> ipf -6 -f /etc/ipf6.rules
> 
> Note the -6 for the IPv6 rules (which appear to be kept separate from the
> IPv4 rules).
> 
> Again, I'm just guessing at ipf usage but you get the idea (I hope).

You guessed very well.  Making the above changes fixed the problem.  
And I didn't know about the -6 switch on ipf.  Applying the same 
solution to another box (also running ipf and having similar 
problems).

Thank you for your time and efforts.
-- 
Dan Langille
I'm looking for a computer job:
http://www.freebsddiary.org/dan_langille.php


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message