From owner-freebsd-current Sat Apr 28 20:22: 6 2001 Delivered-To: freebsd-current@freebsd.org Received: from wyattearp.stanford.edu (wyattearp.Stanford.EDU [171.64.180.171]) by hub.freebsd.org (Postfix) with ESMTP id 751DD37B42C for ; Sat, 28 Apr 2001 20:22:04 -0700 (PDT) (envelope-from richw@wyattearp.stanford.edu) Received: (from richw@localhost) by wyattearp.stanford.edu (8.9.3/8.9.3) id UAA04539; Sat, 28 Apr 2001 20:21:36 -0700 (PDT) (envelope-from richw) Date: Sat, 28 Apr 2001 20:21:36 -0700 (PDT) From: Rich Wales X-Sender: richw@wyattearp.stanford.edu To: "Andrey A. Chernov" Cc: current@freebsd.org Subject: Re: ipfw: several equal rules under same number bug In-Reply-To: <20010429063345.A48717@nagual.pp.ru> Message-ID: <20010429024118.03804.richw@wyattearp.stanford.edu> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Andrey A. Chernov wrote: > I use equal "ipfw add" several times from the script, but > the rule number was the same all times. I expect that rule > is replaced, not added with same number several times. No. There can be multiple rules with the same number. If you run multiple "ipfw add" commands with the same number, they are stored (and executed) in the order in which they were added. Having multiple =identical= rules with the same number doesn't make too much sense, since -- as you noticed -- the ones after the first will never match (unless the rule has a "count" action, in which case all of the identical rules will match). Rich Wales richw@webcom.com http://www.webcom.com/richw/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message