Dan Langille wrote:
>
> next question: what ports to supply? I just allowed 1..65535
> but I'm not
> getting any pings through to my actual firewall. They seem
> to stop at
> the router. I'm verifying this by my firewall logs. Which
> contain icmp
> entires for the 4th, but not for the 5th. My logging rules haven't
> changed, therefore I suspect the router.
>
Ports shouldn't apply to ICMP.

On the M10/M11 it didn't seem to matter what ports you put, but some posted
a while back suggesting that for non-tcp/udp protocols on the M1122, the
port numbers should be set to 0.

> I'm suspecting the same of traceroute because I can't get
> that working
> either. For that, I've allowed udp ports 1..65535 as well.
> I'm getting
> confused as to why neither protocol is reaching my firewall.
> --
depending on the traceroute, I seem to remeber that unix type traceroute can
use a combination of UDP and ICMP, and the wintel tracerte uses ICMP?

This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to majordomo@unixathome.org
with "unsubscribe adsl" in the body of the message
Received on Tue Dec 5 13:59:48 2000