On Tue, Apr 11, 2000 at 01:11:08AM -0500, Brian Stark wrote:
> but, they shouldn't matter because my definition for inbound packets in
> group 110 should automatically setup an implicit rule for the other
> packets during the life of the connection (see section 3.2.  Implicit
> Allow; The "keep state" Rule in the ipf-howto file at
> http://www.obfuscation.org/ipf):
> 
>   pass   in log quick on ppp0 proto tcp from 161.134.0.0/16 to any port 19
>     >< 24 flags S/SA keep state group 110

Ok, I didn't notice this one. This should work then ...
When you try to connect what does ipfstat -f say ?

--
Manuel Bouyer, LIP6, Universite Paris VI.           Manuel.Bouyer@lip6.fr
--