Sockets stuck in FIN_WAIT_1
Robert Blayzor
rblayzor.bulk at inoc.net
Wed May 28 22:49:02 UTC 2008
On May 28, 2008, at 6:43 PM, Chuck Swiger wrote:
> You didn't mention which version of FreeBSD you are running-- that's
> rather important info.
Actually, I just checked, this is a 4.11 server, I thought it was
running at least 6.2.
>> 00200 allow tcp from any to me 80 setup
>> 00200 allow icmp from any to me icmptype 0,3,8,11
>> 00200 deny log ip from any to me
>
> Also, surely these can't be the only IPFW rules you are using? If
> you want to use stateful rules, you need a keep-state argument, and
> you shouldn't be combining allow rules and deny rules into the same
> ruleset number...
Right, I have a :
00100 allow tcp from any to any established
in there as well, but noted on the later part.
--
Robert Blayzor, BOFH
INOC, LLC
rblayzor at inoc.net
http://www.inoc.net/~rblayzor/
More information about the freebsd-stable
mailing list