Date: Thu, 25 Jul 2002 20:02:41 -0700 (PDT) From: Archie Cobbs <archie@dellroad.org> To: Dennis Pedersen <mlists@daydreamer.dk> Cc: freebsd-net@FreeBSD.ORG Subject: Re: mpd & ipfw (keep denying port 1900/udp?!) Message-ID: <200207260302.g6Q32fm93617@arch20m.dellroad.org> In-Reply-To: <007f01c233c7$43aaa300$0301a8c0@dpws> "from Dennis Pedersen at Jul 25, 2002 12:37:24 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
Dennis Pedersen writes: > simply can get throug unless i flush my firewall rules. > In the ipfw log i have the following entry (192.168.2.43 in the workstation > on the inside of the fw i'm trying from and 2.88 in the internal interface > in the fw) > Jul 25 13:22:32 fw /kernel: ipfw: 900 Deny UDP 192.168.2.43:1067 > 192.168.2.88:1900 in via xl0 > Jul 25 13:22:57 fw /kernel: ipfw: 900 Deny UDP 192.168.2.43:1067 > 192.168.2.88:1900 in via xl0 > Jul 25 13:23:22 fw /kernel: ipfw: 900 Deny UDP 192.168.2.43:1067 > 192.168.2.88:1900 in via xl0 > > I don't get it, where does the UDP packet enter the picture? , in the fw > rules i have allow gre from any to any and pptp from any to any (i have one > rule that allows pptp port as src and one as dst). > What am i missing here about the udp port? > Is it always the same port ? (then i can simply just allow 1900/udp, but if > i changes all the time that wont help me much..) PPTP doesn't use UDP, so I have no idea what the UDP is from. PPTP only uses TCP port 1723 and IP prototcol #47 (GRE). Are you sure your firewall rules are not blocking something else as well, but not logging it? -Archie __________________________________________________________________________ Archie Cobbs * Packet Design * http://www.packetdesign.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200207260302.g6Q32fm93617>