>"не пишется" потому, что до этого правила не доходит.
>
>покажи все правила. ipfw show
00100 24 1704 allow ip from any to any via lo0
00110 0 0 deny ip from any to 127.0.0.0/8
00120 0 0 deny ip from 127.0.0.0/8 to any
00200 0 0 deny ip from 10.0.0.0/24 to any in via fxp1
00210 0 0 deny ip from 213.x.x.0/29 to any in via fx0
00300 0 0 deny ip from any to 10.0.0.0/8 via fxp1
00310 0 0 deny ip from any to 172.16.0.0/12 via fxp1
00320 0 0 deny ip from any to 192.168.0.0/16 via fxp1
00400 0 0 deny ip from any to 0.0.0.0/8 via fxp1
00410 0 0 deny ip from any to 169.254.0.0/16 via fxp1
00420 0 0 deny ip from any to 192.0.2.0/24 via fxp1
00430 0 0 deny ip from any to 224.0.0.0/4 via fxp1
00440 0 0 deny ip from any to 240.0.0.0/4 via fxp1
00500 0 0 deny ip from any to 213.x.x.x dst-port 110
00600 977 191312 divert 8668 ip from any to any via fxp1
00650 775 226153 allow tcp from any to any established
00700 0 0 deny tcp from not 213.x.x.x to 213.x.x.x dst-port 5363
00750 0 0 deny ip from any to any frag
00800 57 2736 allow tcp from any 1025-65535 to any dst-port 20,5363,8080,25,110,80,443,53,22,5190,21
01000 48 4139 allow ip from me to any
01100 48 5608 allow ip from any to 10.0.0.6
01200 0 0 allow icmp from any to 213.x.x.x icmptypes 0,3,4,11,12
01210 0 0 allow icmp from 213.x.x.x to any icmptypes 3,8,12
01220 0 0 allow icmp from any to 10.0.0.6 icmptypes 0,3,4,8,11,12
01230 0 0 allow icmp from 10.0.0.6 to any icmptypes 3,8,12
01300 0 0 deny log logamount 100 ip from any to any via fxp1
01350 870 195316 deny log logamount 100 ip from any to any
65535 0 0 deny ip from any to any
Вариант для распечатки
OpenNET: Виртуальная конференция (Public)
(ok) on
28-Сен-05, 18:16 (MSK)
