From owner-freebsd-questions@FreeBSD.ORG Sun Apr 11 03:35:22 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2585916A4CE for ; Sun, 11 Apr 2004 03:35:22 -0700 (PDT) Received: from smtp-out1.xs4all.nl (smtp-out1.xs4all.nl [194.109.24.11]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1E21043D2F for ; Sun, 11 Apr 2004 03:35:21 -0700 (PDT) (envelope-from v.vandalon@student.tue.nl) Received: from student.tue.nl (vandalon.xs4all.nl [80.126.124.113]) by smtp-out1.xs4all.nl (8.12.10/8.12.10) with ESMTP id i3BAZJYP036426 for ; Sun, 11 Apr 2004 12:35:19 +0200 (CEST) Message-ID: <40791F66.6020801@student.tue.nl> Date: Sun, 11 Apr 2004 12:35:18 +0200 From: Vincent Vandalon User-Agent: Mozilla Thunderbird 0.5 (X11/20040229) X-Accept-Language: en-us, en MIME-Version: 1.0 Cc: freebsd-questions@freebsd.org References: <407926CD.70708@farmerstel.com> In-Reply-To: <407926CD.70708@farmerstel.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Subject: Vim and NFS and ipfilter(strange problem) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 11 Apr 2004 10:35:22 -0000 Hi all, i've set up a firewall with ipfilter. Since i use the deny stance, i needed to jump trough some hoops to get NFS working. I am currently just manually mapping the ports mountd is using. But it seems to work... for 99% I am able to do with the mounted nfs disk what i want, i can create new files( 'touch newfile' and vi 'newfile2' and i can write content in the file with vi) i can delete, read. But(...) when i use viM it will hangs it self. I can't manually kill it(exit-status doesn't matter, it won't die). And i don't get an error, so i have no clue what's wrong. My guess is that it is still busy, looped or something... So i removed(==recompiled kernel) ipfilter and vim worked fine on the nfs mount. Recompiled my kernel again with ipfilter and vim hang itself again. So it is vim+ipfilter I think it is still something with my configuration fo ipfilter, i have a basic rules set. I am still in the learning/finetuning phase, but i coulnd't find anything about this on google, onlamp, freebsddiary etc. Can anybody point me in the right direction? Regards Vincent =================config file (sorry comments are in dutch, but still reable in english i guess)=============== #een regel om kleine packages te blokken block in log quick on rl0 from any to any with short #Alle tcp blokken block in log proto tcp all flags S/SA #webserver laten zien pass in quick proto tcp from any to any port = www keep state #ssh door laten pass in quick proto tcp from any to any port = ssh keep state pass in quick proto udp from any to any port = ssh keep state #pop door laten pass in quick proto tcp from any to any port = pop3 keep state #imap doorlaten pass in quick proto tcp from any to any port = 143 keep state pass in quick proto udp from any to any port = 143 keep state #smtp ook maar doolaten, in en uit pass in quick proto tcp from any to any port = 25 keep state pass out quick proto tcp from any to any port = 25 keep state #nfs pass in quick proto tcp/udp from any to any port = 2049 keep state pass out quick proto tcp/udp from any to any port = 2049 keep state pass in quick proto tcp/udp from any to any port = 111 keep state pass out quick proto tcp/udp from any to any port = 111 keep state #hack voor mountd pass in quick proto tcp/udp from any to any port = 1021 keep state pass in quick proto tcp/udp from any to any port = 1023 keep state #samba doorlaten pass in quick on rl0 proto udp from any to any port = 137 keep state pass in quick on rl0 proto udp from any to any port = 138 keep state pass in quick on rl0 proto tcp from any to any port = 139 keep state #printer pass in quick on rl0 proto tcp/udp from any to any port = 515 keep state #dns server pass out quick on rl0 proto tcp/udp from any to any port = 53 keep state #eigen verbindingen toestaan pass out quick on rl0 proto tcp all keep state