From owner-freebsd-stable Tue Nov 19 23:16:16 2002 Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 01D6D37B401 for ; Tue, 19 Nov 2002 23:16:15 -0800 (PST) Received: from seed.net.tw (sn16.seed.net.tw [139.175.54.16]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5161743E91 for ; Tue, 19 Nov 2002 23:16:14 -0800 (PST) (envelope-from leafy@leafy.idv.tw) Received: from [61.59.154.161] (port=1466 helo=leafy.idv.tw) by seed.net.tw with esmtp (Seednet 4.10:3) id 18EP5p-0004xn-00 for freebsd-stable@FreeBSD.ORG; Wed, 20 Nov 2002 15:16:13 +0800 Received: from leafy.idv.tw (localhost [127.0.0.1]) by leafy.idv.tw (8.12.6/8.12.6) with ESMTP id gAK7GC88053971 for ; Wed, 20 Nov 2002 15:16:12 +0800 (CST) (envelope-from leafy@leafy.idv.tw) Received: (from leafy@localhost) by leafy.idv.tw (8.12.6/8.12.6/Submit) id gAK7GC94053970 for freebsd-stable@FreeBSD.ORG; Wed, 20 Nov 2002 15:16:12 +0800 (CST) Date: Wed, 20 Nov 2002 15:16:12 +0800 From: JY To: freebsd-stable@FreeBSD.ORG Subject: Re: ipfw rules loaded but never evaluated Message-ID: <20021120071612.GA53898@leafy.idv.tw> Mail-Followup-To: freebsd-stable@FreeBSD.ORG References: <2F6DCE1EFAB3BC418B5C324F13934C9601D23C35@exchange.corp.cre8.com> <20021119110336.GA12956@gvr.gvr.org> <1037772931.287.17.camel@aldaris2.auir.gank.org> <20021120063549.GA53872@leafy.idv.tw> Mime-Version: 1.0 Content-Type: text/plain; charset=big5 Content-Disposition: inline In-Reply-To: <20021120063549.GA53872@leafy.idv.tw> User-Agent: Mutt/1.5.1i Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Wed, Nov 20, 2002 at 02:35:49PM +0800, JY wrote: > Flushing all rules does not kick me offline either. > > This is a 11/11 world. Anything I missed? > > JY What's worse now is that I can still ssh into the host which is a 'closed' firewall and rules as: 0100 0 0 allow ip from any to any via lo0 00200 0 0 deny ip from any to 127.0.0.0/8 00300 0 0 deny ip from 127.0.0.0/8 to any 65535 0 0 deny ip from any to any Strange... JY To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message