Problem with closing tcp session between cisco and freebsd
Zherdev Anatoly
tolyar at mx.ru
Tue Mar 16 04:37:18 PST 2004
On Tue, 16 Mar 2004 15:34:24 +0300
Gleb Smirnoff <glebius at cell.sick.ru> wrote:
> Z> But in IPFW i have ACCEPT by default and only this deny rules:
> Z>
> Z> 00200 deny ip from any to 127.0.0.0/8
> Z> 00300 deny ip from 127.0.0.0/8 to any
> Z> 00400 deny log logamount 100 tcp from any to any 135-139,445,593
> Z> 00500 deny log logamount 100 udp from any to any 135-139,445
> Z> 01100 deny tcp from any to any 22 in recv fxp1
> Z> 01600 reset tcp from any to any 113
> Z>
> Z> I make ipfw flush when i see this situation and keep only
> Z> 65535 allow ip from any to any
> Z> but problem was not resolved and tcp session not ended.
>
> Another snap question:
>
> what is value of net.inet.tcp.blackhole sysctl?
sysctl -a | grep blackhole
net.inet.tcp.blackhole: 0
net.inet.udp.blackhole: 0
--
Zherdev Anatoly.
More information about the freebsd-net
mailing list