any ipf wizards out there?
Gary Kline
kline at tao.thought.org
Tue Jun 21 00:21:56 GMT 2005
On Mon, Jun 20, 2005 at 10:58:17PM +0200, Michal Mertl wrote:
> Gary Kline wrote:
> > Folks,
> >
> > A couple weeks ago I realized that my ipf ruleset was messing
> > up my web access ... ad had been for months I just tried an
> > older, simpler ipf.rules. Same results. Can anybody out there
> > in FreeBSD-land clue me in please?
>
> Without any concrete information it's hard to guess. The only thing I
> can think of is that you don't allow outgoing ICMP packet-too-big. This
> will make it for users with small MTU (e.g. some dial-up, PPPoE (ADSL)
> impossible to receive bigger pages (longer then their MTU minus
> something).
>
>
Did you see my ipf file, listed completely? I have a couplr
or more remote sites and can reach them with links | lynx
without my ipf.rules. EVErything just-works with the firewall
off; turned on and zip.
(*****)
gary
> >
> >
>
--
Gary Kline kline at thought.org www.thought.org Public service Unix
More information about the freebsd-questions
mailing list