My bad, I found the log entry after your prodding. After enabling logging in the ruleset and enabling the sysctl variable, I get the following output in a tail /var/log/security:
Feb 14 19:59:44 grog kernel: ipfw: 65534 Deny UDP 192.168.0.1:51598 255.255.255.255:61112 in via dc0 Feb 14 19:59:45 grog kernel: ipfw: 65534 Deny UDP 204.147.80.1:53 63.228.14.241:49152 in via dc0 Feb 14 19:59:46 grog kernel: ipfw: 65534 Deny UDP 204.127.202.4:53 63.228.14.241:49152 in via dc0 Feb 14 19:59:50 grog kernel: ipfw: 65534 Deny UDP 192.168.0.1:51599 255.255.255.255:61112 in via dc0 Feb 14 19:59:55 grog kernel: ipfw: 65534 Deny UDP 204.127.202.4:53 63.228.14.241:49152 in via dc0 Feb 14 19:59:56 grog kernel: ipfw: 65534 Deny UDP 192.168.0.1:51600 255.255.255.255:61112 in via dc0 Feb 14 19:59:59 grog kernel: ipfw: 65534 Deny UDP 204.147.80.5:53 63.228.14.241:49152 in via dc0 Feb 14 20:00:02 grog kernel: ipfw: 65534 Deny UDP 204.147.80.5:53 63.228.14.241:49152 in via dc0 Feb 14 20:00:02 grog kernel: ipfw: 65534 Deny UDP 192.168.0.1:51601 255.255.255.255:61112 in via dc0 Feb 14 20:00:03 grog kernel: ipfw: 65534 Deny UDP 204.147.80.1:53 63.228.14.241:49152 in via dc0 I would assume I need to enable a rule such as: ipfw add allow udp from any to me 53 Is this correct? TIA -- Eric F Crist AdTech Integrated Systems, Inc (612) 998-3588
pgp00000.pgp
Description: signature