port-sparc64: Re: Help with firewall Script

Subject: Re: Help with firewall Script
To: NetBSD port-sparc64 mailing list <port-sparc64@netbsd.org>
From: Julian Coleman <jdc@coris.org.uk>
List: port-sparc64
Date: 08/29/2006 14:27:32

> ## pass inbound BIND
> pass in quick on tlp0 proto tcp from any to any port = 53 flags S keep state
> 
> pass in quick on tlp0 proto udp from any to any port = 53 flags S keep state

> But when i run it,  it says i got an error on the second line of bind,
> the UDP one, and then SSH to the box also stop working, please need
> help with this, i dont got any experience with this sintax, i use
> iptables most of the time on linux machines.

It doesn't make sense to have the SYN flag for UDP.  Try removing the
"flags S" part of that line.

J

-- 
  My other computer also runs NetBSD    /        Sailing at Newbiggin
        http://www.netbsd.org/        /   http://www.newbigginsailingclub.org/