Date: Sat, 3 May 2008 16:28:12 +1000 (EST) From: Edwin Groothuis <edwin@mavetju.org> To: FreeBSD-gnats-submit@FreeBSD.org Subject: ports/123357: [ipfw] ipfw add 1000 allow IP from any to any doesn't work Message-ID: <20080503062812.D53D4314@k7.mavetju> Resent-Message-ID: <200805030630.m436U3gI059755@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 123357
>Category: ports
>Synopsis: [ipfw] ipfw add 1000 allow IP from any to any doesn't work
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: freebsd-ports-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Sat May 03 06:30:02 UTC 2008
>Closed-Date:
>Last-Modified:
>Originator: Edwin Groothuis
>Release: FreeBSD 6.3-RELEASE i386
>Organization:
-
>Environment:
System: FreeBSD k7.mavetju 6.3-RELEASE FreeBSD 6.3-RELEASE #0: Sun Feb 17 22:11:52 EST 2008 edwin@k7.mavetju:/usr/src/sys/i386/compile/SMP i386
>Description:
Loading an ipfw rule with "IP" instead of "ip" will enter the rule
properly in the list, but it never gets matched.
>How-To-Repeat:
[/home/edwin] root@k7>ipfw add 100 allow IP from any to any
00100 allow ip from any to any
[/home/edwin] root@k7>ipfw add 100 allow ip from any to any
00100 allow ip from any to any
[/home/edwin] root@k7>ipfw -a list
00100 0 0 allow ip from any to any
00100 922 168617 allow ip from any to any
65535 182 20023 deny ip from any to any
The first entry should be increasing, not the second.
>Fix:
>Release-Note:
>Audit-Trail:
>Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20080503062812.D53D4314>