Date: Wed, 2 Sep 1998 12:28:10 -0700 From: Gregory Sutter <gsutter@pobox.com> To: freebsd-questions@FreeBSD.ORG Subject: ipfw misbehaving Message-ID: <19980902122810.L16430@notabene.zer0.org>
next in thread | raw e-mail | index | archive | help
My ipfw is misbehaving, blocking packets when it shouldn't. Anytime a fragmented packet comes in, it is blocked: ipfw: 3501 Deny TCP 209.61.119.114:11786 209.63.253.126:15436 in via tun0 Fragment = 3 ipfw: 3501 Deny TCP 209.61.119.114:12081 209.63.253.126:11825 in via tun0 Fragment = 3 [etc...] Rule 3501 is: $fwcmd add 03501 deny log tcp from any to $oip 3000-3001 $fwcmd is "ipfw"; $oip is my current outside IP address. Can anyone see a reason why all fragmented packets are blocked by this rule? Greg -- Gregory S. Sutter Heisenberg might have been here. mailto:gsutter@pobox.com http://www.pobox.com/~gsutter/ PGP DSS public key 0x40AE3052 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19980902122810.L16430>