Date: Wed, 5 Sep 2001 14:11:04 -0500 From: "David W. Chapman Jr." <dwcjr@inethouston.net> To: Stephen Hilton <nospam@hiltonbsd.com> Cc: stable@freebsd.org Subject: Re: ipnat bug Message-ID: <20010905141104.K45611@leviathan.inethouston.net> In-Reply-To: <KPEMJADBBBFPDEDOIOMBOEGOCNAA.nospam@hiltonbsd.com> References: <20010905101325.J45611@leviathan.inethouston.net> <KPEMJADBBBFPDEDOIOMBOEGOCNAA.nospam@hiltonbsd.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Sep 05, 2001 at 10:28:54AM -0500, Stephen Hilton wrote: > David, > > I think I recall from previous discussions on the IPFilter mailing list that > others have had a similar problem with state table problems by using the FTP > proxy without a rule to keep state for the FTP connections. > > My rule for a very low volume modem based gateway is: > pass out quick on tun0 proto tcp from any port > 1023 to any port = 21 flags > S keep state > > A good search tool for the IPFilter mailing list is at: > http://marc.theaimsgroup.com/?l=ipfilter&r=1&w=2 > > My setup is quite different from most, which makes me think I should probably post to the group.....I don't use ipfilter, only ipnat. basically my ipfilter rules consist of allow all from any to any(whatever the default is). -- David W. Chapman Jr. dwcjr@inethouston.net Raintree Network Services, Inc. <www.inethouston.net> dwcjr@freebsd.org FreeBSD Committer <www.FreeBSD.org> To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010905141104.K45611>