Ian Batterbee wrote:

> I'm guessing by your email address that it's at otago university ?.
> I've found their firewall rules to be overly restrictive.. they block
> all incoming icmp for example (which is a big no-no, but I won't go
> there).

Isn't ping ICMP ?

[dantheperson@danski dantheperson]$ ping waitaki.otago.ac.nz
PING waitaki.otago.ac.nz (139.80.75.140) from 192.168.1.2 : 56(84) bytes
of data.
64 bytes from waitaki.otago.ac.nz (139.80.75.140): icmp_seq=1 ttl=249
time=86.9 ms
64 bytes from waitaki.otago.ac.nz (139.80.75.140): icmp_seq=2 ttl=249
time=83.7 ms
64 bytes from waitaki.otago.ac.nz (139.80.75.140): icmp_seq=3 ttl=249
time=82.6 ms

--- waitaki.otago.ac.nz ping statistics ---
3 packets transmitted, 3 received, 0% loss, time 2016ms
rtt min/avg/max/mdev = 82.650/84.464/86.949/1.848 ms

I think they do block allot of ICMP on their central servers, but not as
a broad rule to all traffic.

As of last november they do block all incoming traffic unless you
specifically request your machine be excluded from the block. So this
could be a problem for you if the machine is indeed at the university
and no one has requested ITS to allow incoming traffic for your ASIP
server. Oh and they block all windows file sharing ports without
exception, maybe they block the ports used by appleshare too? you could
test this by telneting to a known open port, e.g. ssh to verify that
works, then try telnetting to the port used by ASIP and see if the
connection fails.

-- 
This message is part of the NZ ADSL mailing list. 
see http://unixathome.org/adsl/ for archives, FAQ, 
and various documents. 
To unsubscribe: send mail to majordomo@lists.unixathome.org 
with "unsubscribe adsl" in the body of the message