|
||||||||||
On Apr 13, 2005, at 11:07 AM, John . wrote: >> Rules - http://www.scs.wsu.edu/~arobinso/tmp/SafariScreenSnapz006.jpg >> - Catches all traffic udp or traffic coming from my asterisk >> box. >> > Actually, you might want to get into the > test console and do "ipfw show" to see which rules are accumulating > traffic. Thanks for this...it is helpful. I can at least see what is going on. Are there more commands that might be useful for troubleshooting? Thanks! Aaron $ ipfw show 50000 11050 1165004 allow ip from 192.168.100.1 to any 50001 16089 1348582 allow ip from any to 192.168.100.1 50002 5 380 queue 9 ip from 192.168.100.90 to any iptos lowdelay out via sis1 50003 0 0 queue 7 tcp from any 6881-6999 to any in via sis1 50004 0 0 queue 7 tcp from any to any dst-port 6881-6999 in via sis1 50005 0 0 queue 5 tcp from any 6881-6999 to any out via sis1 50006 0 0 queue 5 tcp from any to any dst-port 6881-6999 out via sis1 50007 0 0 queue 7 ip from any 412 to any in via sis1 50008 0 0 queue 5 ip from any 412 to any out via sis1 50009 0 0 queue 7 ip from any 1044-1045 to any in via sis1 50010 245 11748 queue 5 ip from any 1044-1045 to any out via sis1 50011 0 0 queue 7 ip from any 1214 to any in via sis1 50012 0 0 queue 5 ip from any 1214 to any out via sis1 50013 0 0 queue 7 ip from any 2340 to any in via sis1 50014 0 0 queue 5 ip from any 2340 to any out via sis1 50015 0 0 queue 7 ip from any 4329 to any in via sis1 50016 3 144 queue 5 ip from any 4329 to any out via sis1 50017 0 0 queue 7 ip from any 4661-4665 to any in via sis1 50018 61 10328 queue 5 ip from any 4661-4665 to any out via sis1 50019 705 93039 queue 7 ip from any 5190 to any in via sis1 50020 0 0 queue 5 ip from any 5190 to any out via sis1 50021 0 0 queue 7 ip from any 5500-5503 to any in via sis1 50022 0 0 queue 5 ip from any 5500-5503 to any out via sis1 50023 0 0 queue 7 ip from any 6346 to any in via sis1 50024 0 0 queue 5 ip from any 6346 to any out via sis1 50025 0 0 queue 7 ip from any 6666-6668 to any in via sis1 50026 0 0 queue 5 ip from any 6666-6668 to any out via sis1 50027 0 0 queue 7 ip from any 6699-6701 to any in via sis1 50028 0 0 queue 5 ip from any 6699-6701 to any out via sis1 50029 0 0 queue 7 ip from any 7668 to any in via sis1 50030 0 0 queue 5 ip from any 7668 to any out via sis1 50031 0 0 queue 7 ip from any 7788 to any in via sis1 50032 0 0 queue 5 ip from any 7788 to any out via sis1 50033 0 0 queue 7 ip from any 8311 to any in via sis1 50034 0 0 queue 5 ip from any 8311 to any out via sis1 50035 0 0 queue 7 ip from any 8888-8889 to any in via sis1 50036 0 0 queue 5 ip from any 8888-8889 to any out via sis1 50037 0 0 queue 7 ip from any 28864-28865 to any in via sis1 50038 0 0 queue 5 ip from any 28864-28865 to any out via sis1 50039 35978 1829836 queue 1 ip from any to any iplen 0-100 out via sis1 50040 0 0 queue 1 udp from any to any dst-port 53 out via sis1 50041 0 0 queue 1 ah from any to any out via sis1 50042 0 0 queue 1 esp from any to any out via sis1 50043 0 0 queue 1 gre from any to any out via sis1 50044 1 432 queue 2 icmp from any to any out via sis1 50045 0 0 queue 3 tcp from any to any iplen 0-80 tcpflags ack out via sis1 50046 2899 1652470 queue 4 ip from any to any out via sis1 50047 37 3090 queue 8 icmp from any to any in via sis1 50048 5790 291420 queue 8 ip from any to any iplen 0-100 in via sis1 50049 0 0 queue 8 ah from any to any in via sis1 50050 0 0 queue 8 esp from any to any in via sis1 50051 0 0 queue 8 gre from any to any in via sis1 50052 32613 37419770 queue 6 ip from any to any in via sis1 65535 300734869 139650401810 allow ip from any to any |