Site Navigation

Date:      Mon, 24 Aug 1998 11:15:07 +0200
From:      Paul van der Zwan <paulz@trantor.stuyts.nl>
To:        Philippe Regnauld <regnauld@deepo.prosa.dk>
Cc:        FreebSD Current <freebsd-current@FreeBSD.ORG>
Subject:   Re: Firewall Rules are weird.....look at this...in current.... 
Message-ID:  <199808240915.LAA13070@trantor.stuyts.nl>
In-Reply-To: Your message of "Mon, 24 Aug 1998 09:30:37 %2B0200." <19980824093037.55193@deepo.prosa.dk> 

---

next in thread | previous in thread | raw e-mail | index | archive | help

---

> William Woods writes:
> > 
> > I just compiled todays cvsup of current and all is fine except this. Here is a
> > portion of my firewall rules:
> > 
> > -------------------------------------
> > 00100 allow ip from any to any via lo0
> > 00200 deny ip from any to 127.0.0.0/8
> > 65000 allow ip from any to any
> > 65535 allow ip from any to any
> > 00000 deny ip from any to any
> > 00000 deny ip from any to any
> 
> 	[...]
> > options         IPFIREWALL              #firewall
> > options         IPFIREWALL_VERBOSE      #print information about
> >                                         # dropped packets
> > options         IPFIREWALL_FORWARD      #enable xparent proxy support
> > options         "IPFIREWALL_VERBOSE_LIMIT=100" #limit verbosity
> > options         IPFIREWALL_DEFAULT_TO_ACCEPT #allow everything by default
> > options         IPDIVERT                #divert sockets
> > options         IPFILTER                #kernel ipfilter support
> > options         IPFILTER_LOG            #ipfilter logging
> > #options        IPFILTER_LKM            #kernel support for ip_fil.o LKM
> 
> 	Why do you have both IPFILTER and IPFW ?
> 

Same problem here. But just the following entries:
options         IPFIREWALL              #firewall
options         IPFIREWALL_VERBOSE      #print information about
options         IPDIVERT                #divert sockets

Also when I run 'ipfw show' I get exactly 1024 lines of output. Might this 
be related to the recent mbuf changes ???

	Paul

-- 
Paul van der Zwan		paulz @ trantor.stuyts.nl
"I think I'll move to theory, everything works in theory..."



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199808240915.LAA13070>

Legal Notices | © 1995-2024 The FreeBSD Project. All rights reserved.

Contact