IPFILTER Rules
horio shoichi
bugsgrief at bugsgrief.net
Wed Jun 2 19:01:28 PDT 2004
On Wed, 02 Jun 2004 22:54:22 +0000
Randy Babb <randy at insipidity.co.uk> wrote:
> On Wed, 2004-06-02 at 20:39, Giorgos Keramidas wrote:
> > The delay seems suspiciously like a DNS timeout. Since you haven't
> > mentioned any rules to explicitly allow DNS traffic below, I assume
> > you
> > don't have any. Just add the following rules before your groups:
> >
> > pass out quick proto udp from any to any keep state
> > block return-icmp-as-dest(port-unr) in log proto udp from any to
> > any
>
> Thanks, that fixed it. I also had another problem which stopped a lot of
> outgoing traffic working which seems to have been fixed by adding keep
> state to "pass out on rl0 all head 100".
>
>
> Thanks,
> Randy
>
>
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe at freebsd.org"
>
Possibly a dumb question.
Do /etc/make.conf (or /etc/defaults/make.conf) match on both of machines ?
horio shoichi
More information about the freebsd-questions
mailing list