smtpspy007-tech at yahoo
Oct 3, 2005, 6:51 AM
Post #1 of 2
(6111 views)
Permalink
|
Hello!
I am using Quagga on FreeBSD 5.4 to pass routing
information via OSPF to a Cisco router.
My problem is that OSPF works fine when I allow
everything through the firewall, but breaks when I try
to implement more restrictive rules.
I am new to OSPF and to IPFW, so I'm sure there is
something I am missing. My understanding is that all
I should need to do is to allow the OSPF protocol (IP
type 89) and IGMP from 224.0.0.5/6 through both ways.
I thought my rules did that, but OSPF remains in the
INIT state and never reaches FULL.
This is what my rule list looks like:
00010 allow ip from any to any via lo0
00015 check-state
00100 allow tcp from me to any out via bge0 setup
keep-state
00105 allow ip from me to any out via bge0
00200 allow icmp from any to any in via bge0
00225 allow ospf from any to me in via bge0
00230 allow ip from 224.0.0.5 to me in via bge0
00235 allow ip from 224.0.0.6 to me in via bge0
00999 deny ip from any to any
Can anyone tell me what I'm doing wrong?
Rich Parkin
Talk America, Network Systems Engineer
Rich
(aka BlueBard, aka Bluegeek)
www.bluegeek.net
|
