вот настроил фаервол под FreeBSD... все работало работало а потом по 25 порту перестали пакеты валить .... давай ковырять ничего не нашел кроме одного ...
вот так выглядит ipfw show
10000  79  4488 allow tcp from any to any 22
10100   0     0 deny icmp from any to any via xl0 frag
10100   6   360 deny log logamount 100 tcp from any to any in recv xl0 setup
10200   0     0 deny icmp from any to any in recv xl0 icmptype 8
10300   0     0 deny icmp from any to any out xmit xl0 icmptype 11
10400   0     0 deny log logamount 100 tcp from any to any 0
10500   0     0 deny log logamount 100 tcp from any 0 to any
10600   0     0 deny log logamount 100 udp from any to any 0
10700   0     0 deny log logamount 100 udp from any 0 to any
10800   0     0 deny log logamount 100 ip from any to any ipopt ssrr,lsrr,rr,ts
10900   0     0 deny ip from 192.168.0.0/24 to any in recv xl0
11000   0     0 deny ip from 213.228.73.156/30 to any in recv xl1
11100   0     0 deny ip from any to 10.0.0.0/8 via xl0
11200   0     0 deny ip from any to 172.16.0.0/12 via xl0
11300   0     0 deny ip from any to 192.168.0.0/16 via xl0
11400   0     0 deny ip from any to 0.0.0.0/8 via xl0
11500   0     0 deny ip from any to 169.254.0.0/16 via xl0
11600   0     0 deny ip from any to 192.0.2.0/24 via xl0
11700   0     0 deny ip from any to 224.0.0.0/4 via xl0
11800   0     0 deny ip from any to 240.0.0.0/4 via xl0
11900   0     0 deny ip from 10.0.0.0/8 to any via xl0
12000   0     0 deny ip from 172.16.0.0/12 to any via xl0
12100   0     0 deny ip from 192.168.0.0/16 to any via xl0
12200   0     0 deny ip from 0.0.0.0/8 to any via xl0
12300   0     0 deny ip from 169.254.0.0/16 to any via xl0
12400   0     0 deny ip from 192.0.2.0/24 to any via xl0
12500   0     0 deny ip from 224.0.0.0/4 to any via xl0
12600   0     0 deny ip from 240.0.0.0/4 to any via xl0
12700  64  5492 allow tcp from any to any established
12800   0     0 allow ip from any to any frag
12900   0     0 allow tcp from any to 213.228.73.158 25 setup ----------тут не пашет
13000   0     0 allow tcp from any to 213.228.73.158 53 setup

а вот так пашет
10000  79  4488 allow tcp from any to any 22
10001   0     0 allow tcp from any to 213.228.73.158 25 setup ----тут пашет
10100   0     0 deny icmp from any to any via xl0 frag
10100   6   360 deny log logamount 100 tcp from any to any in recv xl0 setup
10200   0     0 deny icmp from any to any in recv xl0 icmptype 8
10300   0     0 deny icmp from any to any out xmit xl0 icmptype 11
10400   0     0 deny log logamount 100 tcp from any to any 0
10500   0     0 deny log logamount 100 tcp from any 0 to any
10600   0     0 deny log logamount 100 udp from any to any 0
10700   0     0 deny log logamount 100 udp from any 0 to any
10800   0     0 deny log logamount 100 ip from any to any ipopt ssrr,lsrr,rr,ts
10900   0     0 deny ip from 192.168.0.0/24 to any in recv xl0
11000   0     0 deny ip from 213.228.73.156/30 to any in recv xl1
11100   0     0 deny ip from any to 10.0.0.0/8 via xl0
11200   0     0 deny ip from any to 172.16.0.0/12 via xl0
11300   0     0 deny ip from any to 192.168.0.0/16 via xl0
11400   0     0 deny ip from any to 0.0.0.0/8 via xl0
11500   0     0 deny ip from any to 169.254.0.0/16 via xl0
11600   0     0 deny ip from any to 192.0.2.0/24 via xl0
11700   0     0 deny ip from any to 224.0.0.0/4 via xl0
11800   0     0 deny ip from any to 240.0.0.0/4 via xl0
11900   0     0 deny ip from 10.0.0.0/8 to any via xl0
12000   0     0 deny ip from 172.16.0.0/12 to any via xl0
12100   0     0 deny ip from 192.168.0.0/16 to any via xl0
12200   0     0 deny ip from 0.0.0.0/8 to any via xl0
12300   0     0 deny ip from 169.254.0.0/16 to any via xl0
12400   0     0 deny ip from 192.0.2.0/24 to any via xl0
12500   0     0 deny ip from 224.0.0.0/4 to any via xl0
12600   0     0 deny ip from 240.0.0.0/4 to any via xl0
12700  64  5492 allow tcp from any to any established
12800   0     0 allow ip from any to any frag
13000   0     0 allow tcp from any to 213.228.73.158 53 setup
13100 238 38830 allow udp from any to 213.228.73.158 53
13100 238 38830 allow udp from any to 213.228.73.158 53

причем при не работающем варианте заметил вот что
root@ronas-s:/home/bob1>tcpdump port 25
tcpdump: listening on xl0
16:11:27.727690 212.17.13.44.4351 > ronas-s.smtp: S 4234506425:4234506425(0) win 64240 <mss 1460,nop,nop,sackOK> (DF)
16:11:30.645613 212.17.13.44.4351 > ronas-s.smtp: S 4234506425:4234506425(0) win 64240 <mss 1460,nop,nop,sackOK> (DF)
^C
14 packets received by filter
0 packets dropped by kernel
root@ronas-s:/home/bob1>

помогите разобраться....

• отладка фаервола , globus, 05:09 , 18-Июл-03, (1)
  • отладка фаервола , Bart Simpson, 05:31 , 18-Июл-03, (2)
    • отладка фаервола , globus, 06:15 , 18-Июл-03, (3)
      • отладка фаервола , Bart Simpson, 06:43 , 18-Июл-03, (4)
        • отладка фаервола , globus, 07:20 , 18-Июл-03, (5)