Date: Fri, 20 Dec 2002 10:51:13 +0700 From: Eugene Grosbein <eugen@kuzbass.ru> To: James Pace <jepace@pobox.com> Cc: freebsd-stable@FreeBSD.ORG Subject: Re: ipfw and rule 65535 Message-ID: <3E0293B1.2D1AC05E@kuzbass.ru> References: <20021218132335.D3893-100000@tigger.pacehouse.com>
next in thread | previous in thread | raw e-mail | index | archive | help
James Pace wrote: > > (No reply in -questions, so trying here. Thanks.) > > Here is the end of the output from 'ipfw show': > > 04000 0 0 deny log ip from any to any > 65535 91 8227 deny ip from any to any > > Can anyone explain why the last rule is getting hit? I was under the > impression that the rules are traversed in order, so 4000 should catch > anything that 65535 would. > > This is FreeBSD 4.7-STABLE: Sun Nov 10 10:42:32 PST 2002 There were packets arrived when rule 4000 did not exist yet. Eugene Grosbein To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3E0293B1.2D1AC05E>