verrevpath failure from within my own box
Sean McNeil
sean at mcneil.com
Fri Nov 11 20:11:00 PST 2005
On Sat, 2005-11-12 at 14:47 +1100, Peter Jeremy wrote:
> On Fri, 2005-Nov-11 16:35:30 -0800, Sean McNeil wrote:
> >00300 28 2177 deny ip from any to any not verrevpath in via dc0
> >
> >as you can see, there are some packets that were denied. I can
> >reproduce this with nautilus by simply browsing network:///.
>
> How about you add a 'log' to that rule and see exactly what is matching.
> That may provide a clue to you, or someone on this list, as to what is
> not behaving as expected.
OK, I did that. I see
Nov 11 20:06:37 triton kernel: ipfw: 300 Deny UDP 24.199.45.54:63716
24.199.45.55:137 in via dc0
where 24.199.45.54 is the ip address of dc0.
Nothing I didn't expect.
Sean
More information about the freebsd-current
mailing list