continued IPFW issues... (actually a lack of ability on my part)
Eric F Crist
ecrist at adtechintegrated.com
Sat Feb 14 13:28:00 PST 2004
I'm still having some sort of issues with ipfw rules on my server. I've got a
cgi based irc client installed, and I can't connect. Also, it seems as if my
DNS server isn't able to send queries out. An ipfw show displays the
following for me:
00050 54632 4640473 allow ip from me to any
00100 0 0 allow ip from any to any via lo0
00200 0 0 deny ip from any to 127.0.0.0/8
00300 0 0 deny ip from 127.0.0.0/8 to any
00400 4027 351563 allow ip from 63.228.14.240/29 to me
00500 2 80 allow ip from any to me dst-port 22
00600 2 80 allow ip from any to me dst-port 21
00700 388 25405 allow ip from any to me dst-port 25
00800 58 4944 allow ip from any to me dst-port 80
00900 2 80 allow ip from any to me dst-port 443
01000 2 80 allow ip from any to me dst-port 110
01100 54 4247 allow ip from any to me dst-port 53
01200 2 80 allow ip from any to me dst-port 6667
01300 2 80 allow ip from any to me dst-port 6668
01400 4 160 deny ip from not 63.228.14.240/29 to me dst-port 8080
65535 46432 7224466 deny ip from any to any
Where is all that denied traffic coming from on the final rule?
TIA
--
Eric F Crist
AdTech Integrated Systems, Inc
(612) 998-3588
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: signature
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20040214/f94cd713/attachment.bin
More information about the freebsd-questions
mailing list