[ previous ] [ next ] [ threads ]
 
 From:  Zach Lowry <zach at zachlowry dot net>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Packets blocked for seemingly no reason
 Date:  Sun, 01 May 2005 23:14:01 -0500 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello!

I am having some packets blocked when I have allow rules that should
cover them. For instance:

May  1 22:57:57 192.168.0.1 ipmon[130]: 22:57:57.289976 sis1 @0:31 b
192.168.0.2,41262 -> 83.149.110.1,80 PR tcp len 20 52 -AF IN

This appears to be my workstation making an outgoing HTTP request. It
claims that it was blocked, however the only rule I have set on my LAN
interface allows traffic from the LAN subnet to any host, any port, so
things like this should never be blocked.

The only thing that I can think that could be causing this is the fact
that I do have Outbound NAT enabled. This is to keep requests from
appearing to originate from from my dynamic PPPoE IP, rather I have them
leave through one of my static IPs that are routed to me.

Any ideas?
- --
Zach Lowry
MTSU, Murfreesboro, TN
zach at zachlowry dot net
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFCdakJgdZCZBzmiU4RAoVBAJ9xiG+EAHlfUIbEWicWN8KxiU+QugCaA05c
gwkBadHl9tbrvo/PtaZgTRw=
=FERP
-----END PGP SIGNATURE-----