Isn't "Destination unreachable" icmp a reply to a closed udp port?
-Ober
Richard Chesler: [Reading a piece of paper] The first rule of Fight Club is you
don't talk about Fight Club?
Narrator: [Voice-over] I'm half asleep again; I must've left the original in
the copy machine.
Richard Chesler: The second rule of Fight Club - is this yours?
Narrator: Huh?
Richard Chesler: Pretend you're me, make a managerial decision: you find this,
what would you do?
On Thu, 19 Jan 2006, Steven S wrote:
Date: Thu, 19 Jan 2006 10:58:44 -0500
From: Steven S <[EMAIL PROTECTED]>
To: misc@openbsd.org
Subject: Re: Generating ICMP Redirects
[EMAIL PROTECTED] wrote:
On Thu, Jan 19, 2006 at 10:32:40AM -0500, Steven S wrote:
...
What about sysctl net.inet.ip.forwarding? Is it set to 1?
wq Claudio
Yep. The firewalls are working perfectly aside from this redirect issue.
They are even performing ISP load balancing (when the second ISP says up.)
FW1 is acting as primary and FW2 is standby (it's off right now.)
[EMAIL PROTECTED] sysctl -a |grep forw
net.inet.ip.forwarding=1
net.inet6.ip6.forwarding=0
-Steve S.
