Firewall Wizards mailing list archives

Re: IPFW on OS X issues

From: Barney Wolff <barney () databus com>
Date: Mon, 28 Jul 2003 16:45:27 -0400

On Mon, Jul 28, 2003 at 08:07:40PM -0000, Rishi Pande wrote:

       I am having problems with an OS X machine on which I set up 
an IPFW firewall. The firewall does not allow SLP network browsing 
on port 427. I log all the denied entries and the log shows about 
10 messages a second of more or less the same message. Here's 
a sampling of the log:

Jul 28 15:44:13 nom mach_kernel: ipfw: 7000 Deny UDP 
128.173.125.180:49807 239.255.255.253:427 in via en0
Jul 28 15:44:13 nom mach_kernel: ipfw: 7000 Deny UDP 
128.173.201.44:49406 239.255.255.253:427 in via en0
  
The funny part is my machine is not 239.255.255.253. I have 
installed the same firewall on different machines but they don't 
seem to have any such problems.


239.255.255.253 is a multicast address.  7000 is the rule number
that's blocking the packets.  ipfw rules are evaluated in order.
Knowing that, look at your rules.

-- 
Barney Wolff         http://www.databus.com/bwresume.pdf
I'm available by contract or FT, in the NYC metro area or via the 'Net.
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

IPFW on OS X issues Rishi Pande (Jul 28)
- Re: IPFW on OS X issues Chuck Swiger (Jul 29)
- Re: IPFW on OS X issues Barney Wolff (Jul 29)