IPFW and HTTPS problem
Bill Moran
wmoran at potentialtech.com
Sat Aug 25 14:21:26 PDT 2007
[Any reason you posted to the same list twice?]
In response to "Narek Gharibyan" <ngharibyan at arm.synisys.com>:
>
> I enabled https for my webmail. It works for LAN client but doesn't work for
> Internet clients. I checked with tcpdump ipfw filters the incomping https
> packets unless the rule
>
> Ipfw add allow tcp from any to ${webmail} 443
>
> Ipfw add allow tcp from ${webmail} 443 to any
>
>
>
> Even I tried
>
>
>
> Ipfw add allow all from any to ${webmail} keep-state
>
> Ipfw add allow all from ${webmail} to any keep-state
>
>
>
> Nothing helps.
>
>
>
> Any comments?
Yes. Please provide your entire ruleset. It's impossible to assist in
debugging a ruleset with only a partial ruleset. Do not trim or edit
the ruleset, as you may trim away the part that is causing the problem.
On your own, the output of 'ipfw show' can be useful for determining
which rules are blocking traffic, as it shows counters of how many
packets have matched each rule.
--
Bill Moran
http://www.potentialtech.com
More information about the freebsd-questions
mailing list