Tom
At 09:16 07.10.2004 -0700, you wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Erich Titl wrote: > Hi everybody > > I ran into a problem today with a site which wanted to upload some html data using frontpage. I saw the ftp STOR request qoing out from the firewall but no data. The log showed icmp type 3 packets blocked at the inside interface specifying a mtu size of 1492, typical for ADSL. > > In shorewall.conf I had set CLAMPMMS to true. > > I had to allow ICMP type 3 from the firewall to the local net in order to get this transfer working. > > Anyone with similar experience? >
The standard Shorewall sample configuration (2- and 3-interface), both include this rule:
ACCEPT fw all icmp
This rule has been missing in the .lrp configurations. I added it to the evelopment thread 'rules' file two weeks ago.
Would there be a way to implicitly define such a rule, so it does not get amiss anymore.
Thanks Erich
THINK P�ntenstrasse 39 8143 Stallikon mailto:[EMAIL PROTECTED] PGP Fingerprint: BC9A 25BC 3954 3BC8 C024 8D8A B7D4 FF9D 05B8 0A16
------------------------------------------------------- This SF.net email is sponsored by: IT Product Guide on ITManagersJournal Use IT products in your business? Tell us what you think of them. Give us Your Opinions, Get Free ThinkGeek Gift Certificates! Click to find out more http://productguide.itmanagersjournal.com/guidepromo.tmpl ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
