how come pf is blocking this and how do i unblock?

08:26:46 Default DROP TCP
192.168.1.104 : 2328
→
64.235.252.244 : 2710

[SYN] len=48 ttl=127 tos=0x00 srcmac=00:01:02:71:e8:f2 dstmac=00:40:f4:58:9c:a7
08:26:47 Default DROP TCP
192.168.1.104 : 2329
→
64.235.252.244 : 2710

[SYN] len=48 ttl=127 tos=0x00 srcmac=00:01:02:71:e8:f2 dstmac=00:40:f4:58:9c:a7
08:26:50 Default DROP TCP
192.168.1.104 : 2330
→
64.235.252.244 : 2710

[SYN] len=48 ttl=127 tos=0x00 srcmac=00:01:02:71:e8:f2 dstmac=00:40:f4:58:9c:a7
08:27:00 Default DROP TCP
192.168.1.104 : 2331
→
64.235.252.244 : 2710

[SYN] len=48 ttl=127 tos=0x00 srcmac=00:01:02:71:e8:f2 dstmac=00:40:f4:58:9c:a7
08:27:02 Default DROP TCP
192.168.1.104 : 2332
→
64.235.252.244 : 2710

[SYN] len=48 ttl=127 tos=0x00 srcmac=00:01:02:71:e8:f2 dstmac=00:40:f4:58:9c:a7
08:27:03 Default DROP TCP
192.168.1.104 : 2331
→
64.235.252.244 : 2710

[SYN] len=48 ttl=127 tos=0x00 srcmac=00:01:02:71:e8:f2 dstmac=00:40:f4:58:9c:a7
08:27:06 Default DROP TCP
192.168.1.104 : 2332
→
64.235.252.244 : 2710

[SYN] len=48 ttl=127 tos=0x00 srcmac=00:01:02:71:e8:f2 dstmac=00:40:f4:58:9c:a7
08:27:09 Default DROP TCP
192.168.1.104 : 2331
→
64.235.252.244 : 2710

[SYN] len=48 ttl=127 tos=0x00 srcmac=00:01:02:71:e8:f2 dstmac=00:40:f4:58:9c:a7
08:27:12 Default DROP TCP
192.168.1.104 : 2332
→
64.235.252.244 : 2710

[SYN] len=48 ttl=127 tos=0x00 srcmac=

By definition, a firewall blocks all traffic that is not explicitly allowed.

__________________
ACE V7 - Astaro Preferred Partner since V3
Addicted to my iPhone!

then why does http work? why does other stuff work? i didnt allow it so it should not work. it just picks and chooses what traffic to allow or not.

how do i unblock that?

Post deleted. Can't we all just get along

I'm sorry you took it that way because it isn't meant bad or anything. These are just words on a screen and you have no way of knowing how they are being said. I've never said anything bad and I'm sorry anyone thinks otherwise, ((

Buggs, it's probably working with web pages due to the HTTP Proxy being turned on?
This will allow web traffic.

To allow non proxied traffic you need to setup rules in the packet filter area.

Can everyone please refrain from abusing other users too please.

__________________
Simon Shaw
Systems Manager
Micromine PL

Intel 2.66GHz Quad Core, 4GB (2 x 2GB) PC-6400 800Mhz 4-4-4-12, WD 300GB 10K RPM VelociRaptor, Intel Pro/1000 Quad Port PCI-X
http://www.sputcorp.com/

Yes. All enabled services automatically 'dig' the necessary holes in the firewall/packetfilter.

You can get a list of all packetfilters in place by typing 'iptables -L -n' at the shell. All rules that belong to AUTO_* Chains are automatically being created by the Astaro.

In WebAdmin, where suitable, you can also check a box 'Auto-Packetfilter rule' (In VPN Site-to-Site for example) for easily accepting packets of the VPN.

__________________
"Datenautobahn: Einrichtung zur schnellen Übertragung großer Datenmengen (z.B. über das Telefonnetz)" (DUDEN, 21. Auflage)

Mario Schmidt
QA Engineer
Astaro AG

I have retracted my previous post after giving it some thought. We are all members of the same community with different languages and backgrounds/skills. This means that all of us at one time or another write things that do not come accross the way they are meant to be interpreted. I reacted strongly to one of the posts by a fellow member and I should have just ignored it. My appologies to the parties involved.

Just wanted to say this though, there are members here with thousands of posts. They are not getting paid by astaro and they are not pretending to be know it alls. It doesn't hurt once in a while to say thanks for your time even if we don't agree with what they say.

The PF was blocking bittorrent. I opened up utorrent on a pc and it wouldn't work. Bittorrent and no p2p are set to block and I don't have any proxies that I manually turned on. So that is how come I'm lost.

And yes everything is ok and I know I sometimes can and do in fact sometimes need to type different. For me when I talk it's just how i talk, but in text it's just how i type, but i am sure i can re do stuff sometimes.

And i don't remember to say thanks and that's my bad. So please forgive me for when I post I don't say thanks. I will i am pretty sure, once i can implement a fix, but would save the thanks til the end. However I'm sure it's good to say thanks etc even before then. So I'll try to do that more too.

My social skills are not as good as i wish because I haven't had a social life really since just after i graduated highschool 15 years ago when i was 19.

God bless you all and i truly mean it.

Joe