Re: IPFW - Allowed but Denied is shown in my logs

[kera...@ceid.upatras.gr]

On 2004-08-04 17:13, Srot BULL <pwd8j...@me.point.ne.jp> wrote:
>
> This is found in my /etc/ipfw.rules
> ### Allow out non-secure standard www function ###
> $CMD 00200 allow tcp from any to any 80 out via $IFN setup keep-state
>
> ### Allow out send & get email function ###
> $CMD 00230 allow tcp from any to any 25 out via $IFN setup keep-state
> $CMD 00231 allow tcp from any to any 110 out via $IFN setup keep-state
>
> ### deny and log everything else that's trying to get out. ###
> ### This rule enforces the block all by default logic. ###
> $CMD 00299 deny log all from any to any out via $IFN
>
> Why are the above firewall logs telling me that it has denied my TCP
> packets and yet I am not experiencing some problems in my emails and
> access to the internet through port 80. [...]

Show us the full ruleset. Otherwise we're just guessing...

_______________________________________________
freebsd-...@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questi...@freebsd.org"

[ar...@wup-katowice.pl]

Srot BULL wrote:

> My apologies, below is my complete ruleset:
> # Flush out EVERYTHING first before starting
> ipfw -q -f flush
>
> # Set rules command prefix
> CMD="ipfw -q add"
> IFN="rl0"
[...]

Hi
I don't see nothing about NAT - mayby this is problem??
How work others connections from 192.168...?
To external POP, SMTP servers?

P.S.
Sorry about my english.

Arek

--
Arek Czereszewski | jid: aro(at)chrome.pl
arek(at)wup-katowice.pl | gg: 1349941
"*nix is like a wigwam:
no windows, no gates, apache inside."