pls help for ipfw

ann kok annkok2001 at yahoo.com
Wed Sep 21 14:30:37 PDT 2005


thank you for your mail

I tried add-state but

ipfw: unrecognised option [-1] add-state

--- Lowell Gilbert
<freebsd-questions-local at be-well.ilk.org> wrote:

> Charles Swiger <cswiger at mac.com> writes:
> 
> > On Sep 21, 2005, at 4:20 PM, ann kok wrote:
> > > my rules:
> > >
> > > ipfw add allow udp from any to tftpserverip
> > > ipfw add allow udp from tftpserverip to any
> > >
> > > In the freebsd box, I can access tftp server but
> > > internal users is hanging in the "get" state
> > 
> > TFTP may also use TCP:
> > 
> > % grep tftp /etc/services
> > tftp             69/udp     # Trivial File
> Transfer
> > tftp             69/tcp     # Trivial File
> Transfer
> 
> Except that it doesn't.  The port is reserved to
> avoid confusion, but
> the TFTP protocol doesn't run on TCP.
> 
> NAT is probably hanging things up.  I think that all
> that's needed is
> to "add-state" on the outgoing TFTP rule.
> 
> -- 
> Lowell Gilbert, embedded/networking software
> engineer, Boston area
> 		http://be-well.ilk.org/~lowell/
> 


__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 


More information about the freebsd-questions mailing list