From owner-freebsd-net Wed Feb 12 8: 2:23 2003 Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E62F637B401 for ; Wed, 12 Feb 2003 08:02:21 -0800 (PST) Received: from smtp2.libero.it (smtp2.libero.it [193.70.192.52]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2D76F43FB1 for ; Wed, 12 Feb 2003 08:02:21 -0800 (PST) (envelope-from ml.ventu@flashnet.it) Received: from soth.ventu (151.38.59.209) by smtp2.libero.it (6.7.015) id 3E48BA34000C8247 for freebsd-net@freebsd.org; Wed, 12 Feb 2003 17:02:19 +0100 Received: from mailer (xanatar.ventu [10.1.2.6]) by soth.ventu (8.12.6/8.12.6) with SMTP id h1CG2n4h002384 for ; Wed, 12 Feb 2003 17:02:49 +0100 (CET) (envelope-from ml.ventu@flashnet.it) Message-Id: <200302121602.h1CG2n4h002384@soth.ventu> To: freebsd-net@freebsd.org X-Mailer: Post Road Mailer for OS/2 (Green Edition Ver 3.0) Date: Wed, 12 Feb 2003 17:02:49 EST From: Andrea Venturoli Reply-To: Andrea Venturoli Subject: ipfw: count=pass? Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello! I've tried to block users from surfing the web, once they have moved a certain amount of traffic per week. I put a series of "count" rules in ipfw and let cron call a script every 5 minutes to read the associeted byte counter and possibly insert "deny" rules *after* the count rules. The problem is that the traffic still goes through: the counters of the deny rules are all 0, as though they were never reached. ipfw's manual page states that after a count the packet goes ahead in the rule chain as if nothing has happened, but at this points I'm beginning to wonder wether this is true or wether the count rules also allow traffic through as if they were "pass". This on FreeBSD 4.7-p3. bye & Thanks av. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message