Date: Thu, 6 Sep 2001 07:23:40 -0400 (EDT) From: Dru <genisis@istar.ca> To: Cary <scattered@babel.acu.edu> Cc: Bill Moran <wmoran@iowna.com>, freebsd-questions <freebsd-questions@FreeBSD.ORG> Subject: Re: dhclient problems (w/ ipfw show) Message-ID: <20010906072047.U27292-100000@x1-6-00-50-ba-de-36-33.kico1.on.home.com> In-Reply-To: <Pine.LNX.4.10.10109052051360.4932-100000@babel.acu.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi Cary, On Wed, 5 Sep 2001, Cary wrote: > 00100 0 0 allow ip from any to any via lo0 > 00200 0 0 deny ip from any to 127.0.0.0/8 > 00300 0 0 deny ip from 127.0.0.0/8 to any > 00400 527 36501 allow ip from 150.252.106.57 to 150.252.104.0/21 > 00500 498 249731 allow ip from 150.252.104.0/21 to 150.252.106.57 > 00600 13973 1096248 allow tcp from any to any established > 00700 0 0 allow ip from any to any frag > 00800 0 0 allow tcp from any to 150.252.106.57 25 setup > 00900 5 220 allow tcp from 150.252.106.57 to any setup > 01000 19 1120 deny tcp from any to any setup > 01100 6 478 allow udp from 150.252.106.57 to any 53 > keep-state > 01200 3894 295944 allow udp from 150.252.106.57 to any 123 > keep-state > 65535 103876 14505389 deny ip from any to any > ## Dynamic rules: > 01200 1 76 (T 10, # 82) ty 0 udp, 150.252.106.57 123 <-> > 150.252.128.107 123 > 01200 0 0 (T 17, # 92) ty 0 udp, 150.252.106.57 123 <-> 132.163.4.101 > 123 > 01200 3 228 (T 10, # 113) ty 0 udp, 150.252.106.57 123 <-> I don't see any rules to allow in UDP at port 67. You should also let in some ICMP, as per those tutorials I mentioned earlier. HTH, Dru To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010906072047.U27292-100000>