Date: Wed, 28 Mar 2001 21:16:08 +0300 From: Peter Pentchev <roam@orbitel.bg> To: Mason Harding <mharding@marketnews.com> Cc: security@FreeBSD.ORG Subject: Re: Bridging and IPF Message-ID: <20010328211608.A10861@ringworld.oblivion.bg> In-Reply-To: <BGENLPKDCIBENFNNNAIDIENBCAAA.mharding@marketnews.com>; from mharding@marketnews.com on Wed, Mar 28, 2001 at 12:54:36PM -0500 References: <20010328111618.C9865@pir.net> <BGENLPKDCIBENFNNNAIDIENBCAAA.mharding@marketnews.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Mar 28, 2001 at 12:54:36PM -0500, Mason Harding wrote: > Hi. Has anyone had much luck with Bridging and IPF? As soon as I enable > bridging both IPF and IPFW stop filtering at all. If I set them both to > deny everything, they still let all packets pass. When I set > net.link.ether.bridge_ipfw=1 my system sits there for a second and then the > kernel crashes and reboots the machine. I can get > net.link.ether.bridge_ipfw set to 1 without a crash if I have no IP address > on any of the bridged interfaces, but I need an IP address so I can use my > external syslog server and ssh into the firewall(untill I know its running > well). Please help? Oh yah, its FreeBSD 4.2. Is this a plain vanilla 4.2-RELEASE, or some kind of -stable? In any case, could you update to the most recent -stable (4.3-RC at the moment) and see if the problems persist? There have been MANY fixes to the routing/bridging code in the last two months. G'luck, Peter -- I've heard that this sentence is a rumor. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010328211608.A10861>