Here is my screend.conf again:
default reject;
for 10.20.1.0 netmask is 255.255.255.0;
for 192.168.2.0 netmask is 255.255.255.0;
between subnet 192.168.2.0 and subnet 10.20.1.0
accept;
Here is my ifconfig -a output:
lo0:
flags=100c89<UP,LOOPBACK,NOARP,MULTICAST,SIMPLEX,NOCHECKSUM>
inet 127.0.0.1 netmask ff000000 ipmtu 4096
sl0: flags=10<POINTOPOINT>
tu0:
flags=c63<UP,BROADCAST,NOTRAILERS,RUNNING,MULTICAST,SIMPLEX>
inet 192.168.2.70 netmask ffffff00 broadcast
192.168.2.255 ipmtu 1500
tu1:
flags=c63<UP,BROADCAST,NOTRAILERS,RUNNING,MULTICAST,SIMPLEX>
inet 10.20.1.1 netmask ffffff00 broadcast
10.20.1.255 ipmtu 1500
tun0: flags=80<NOARP>
And here is the debug from screend:
[192.168.2.164]->[10.20.1.2] icmp (8)
checking cache:
age 39 [192.168.2.164]->[10.20.1.2] icmp (8)
match
(1050672454.640048) af 2 count 120 dlen 84 xid 0x1244
action 0 REJECT
[192.168.2.164]->[10.20.1.2] icmp (8)
checking cache:
age 40 [192.168.2.164]->[10.20.1.2] icmp (8)
match
(1050672455.640048) af 2 count 120 dlen 84 xid 0x1245
action 0 REJECT
[192.168.2.164]->[10.20.1.2] icmp (8)
checking cache:
age 41 [192.168.2.164]->[10.20.1.2] icmp (8)
match
(1050672456.640048) af 2 count 120 dlen 84 xid 0x1246
action 0 REJECT
Thank you!
=====
Terry
__________________________________________________
Do you Yahoo!?
Yahoo! Tax Center - File online, calculators, forms, and more
http://tax.yahoo.com
Received on Fri Apr 18 2003 - 13:31:59 NZST