I'm running a fairly old OpenBSD 3.9, but the problem doesn't seam
related to a bug in OpenBSD.
I'm controlling MSN Messenger access with authpf with the following
rule per user:
pass out quick on vlan10 inet proto { tcp udp } from $user_ip to port
1863 keep state
(vlan10 is my external interface, and udp is not really necessary)
It worked fine for months.
Someday a user had problems and after a lot of testing I found the following:
* At the same PC, using different users give different results
(connected or unable to connect to MSN Messenger), even though all
users have the same rules.
* Renaming a user with connection problems to a user without
connection problems, works.
Inspecting the traffic I've found that users with connection problems
do not get any answer from messenger.hotmail.com, while the users
without connection problems do.
Any ideas?
--
Gerardo Santana
