Date: Mon, 27 May 2002 07:49:28 +0200 From: Nino Dehne <freebsd-ipfw@0x54434D.net> To: Retal <lirandb@netvision.net.il> Cc: freebsd-ipfw@freebsd.org Subject: Re: Unreach flag Message-ID: <3CF1C8E8.6020006@0x54434D.net> References: <004701c204ab$db0e2050$668ce650@main1>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi Retal, Retal wrote: > Hi.. > > There's sometimes i just can't figure out: > > When im adding those rules to my IPFW: > > 00001 7 392 allow icmp from 80.230.140.105 to any you need to allow echo requests (type 0) to reach your box. look at this: allow icmp from any to 80.230.140.105 icmptype 0 allow icmp from 80.230.140.105 to any icmptype 8 icmp type 0 is "echo request" while type 8 is "echo reply". > 00002 10 576 unreach host icmp from any to any > > and after it i ping my fbsd box from another IP i get this: > > Reply from 80.230.140.105: Destination host unreachable. > Reply from 80.230.140.105: Destination host unreachable. > Reply from 80.230.140.105: Destination host unreachable. > Reply from 80.230.140.105: Destination host unreachable. > > > whats this unreach option used for/useful for .. and is it matter if i > use host, filter-prohib or any other flags.. ? can't comment on these, though. > Thanks.. Retal (retaly@inter.net.il <mailto:retaly@inter.net.il>) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3CF1C8E8.6020006>