Thanks Darren. I gave that a shot and no go. When I do an ipfstat -io I get:
flags S/FSRPAU I read (somewhere) that that this is the most restrictive. Not sure if that is correct, but i was curious where all the extra flags came from (I am assuming default). Can you point me to a document that helps explain this? On Thu, Oct 2, 2008 at 12:55 AM, Darren Reed <[EMAIL PROTECTED]> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > For all of your "pass .. proto tcp ... keep state" rules, > add in "flags S" in the correct location and see if that helps. > > Darren > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.9 (MingW32) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iEYEARECAAYFAkjkVC4ACgkQP7JIXtvLbFX/mgCdElMiWsi9YJbvMYB9jHZk57le > mk0AoLpEVhWy+5+p1374Re6cb0oyPbVw > =Vg0A > -----END PGP SIGNATURE----- > >
