/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! /* ALSO: Don't quote this header. It makes you look lame :-) */ when i use the 'light' version of the trinityOS firewall ruleset with the ip_masq_irc module loaded i have no problems sending a file over DCC from a masqued box with mirc (connected to irc server on port 6667, and lookupmethod to normal in mirc) but when i use the attached *strong* firewall set i am not able to send a dcc file ... here is was gets logged in /var/log/messages about this: Dec 29 21:37:14 ultra kernel: Packet log: input REJECT ppp0 PROTO=6 63.10.244.33:3243 212.100.182.41:61204 L=48 S=0x00 I=50894 F=0x4000 T=115 SYN (#70) Dec 29 21:37:18 ultra kernel: Packet log: input REJECT ppp0 PROTO=6 63.10.244.33:3243 212.100.182.41:61204 L=48 S=0x00 I=54222 F=0x4000 T=115 SYN (#70) Dec 29 21:37:23 ultra kernel: Packet log: input REJECT ppp0 PROTO=6 63.10.244.33:3243 212.100.182.41:61204 L=48 S=0x00 I=61390 F=0x4000 T=115 SYN (#70) Dec 29 21:37:35 ultra kernel: Packet log: input REJECT ppp0 PROTO=6 63.10.244.33:3243 212.100.182.41:61204 L=48 S=0x00 I=12751 F=0x4000 T=115 SYN (#70) and perhaps also interesting, this is what iptraf shows about this: x ICMP dest unreach (port) (76 bytes) from 212-100-182-41.adsl.easyn to 1Cust3... on ppp0 x ICMP dest unreach (port) (76 bytes) from 212-100-182-41.adsl.easyn to 1Cust3... on ppp0 x ICMP dest unreach (port) (76 bytes) from 212-100-182-41.adsl.easyn to 1Cust3... on ppp0 x ICMP dest unreach (port) (76 bytes) from 212-100-182-41.adsl.easyn to 1Cust3... on ppp0 anyone has an idea what is wrong here and what i can change in the firewall ruleset so this will work ? thanks in advance bruno [demime 0.97b removed an attachment of type application/octet-stream which had a name of firewall] _______________________________________________ Masq maillist - [EMAIL PROTECTED] Admin requests can be handled at http://www.indyramp.com/masq-list/ -- THIS INCLUDES UNSUBSCRIBING! or email to [EMAIL PROTECTED] PLEASE read the HOWTO and search the archives before posting. You can start your search at http://www.indyramp.com/masq/ Please keep general linux/unix/pc/internet questions off the list.
