ipfw and tun0
Kevin Kinsey
kdk at .daleco.biz
Fri Jul 22 00:25:33 GMT 2005
Dirk Gouders wrote:
>Hello,
>
>I just started to use an ADSL line with PPPoE and want run a firewall
>between it and my local network. What I am wondering about is that
>even if I only have the default everything-blocking rule (deny ip from
>any to any) I still see incoming packets on tun0 with tcpdump.
>
>Is this, because the firewall rules get checked after the packets
>leave the tun0 interface? On what interface should I run tcpdump then
>to check if my rules are working as expected?
>
>Dirk
>
Just a guess, here .... tun0 doesn't exist when the firewall rc
script is run, so you may have to explicity state the name
of the interface since it wouldn't be listed during device
polling at boot time?
Like I said, just grasping at straws. Maybe you've already
tried that one....
Kevin Kinsey
More information about the freebsd-questions
mailing list