From owner-freebsd-stable Fri Apr 6 6:29:44 2001 Delivered-To: freebsd-stable@freebsd.org Received: from farc.ikami.com (farc.ikami.com [204.29.203.67]) by hub.freebsd.org (Postfix) with ESMTP id 8743B37B43F for ; Fri, 6 Apr 2001 06:29:41 -0700 (PDT) (envelope-from nrh@ikami.com) Received: by farc.ikami.com (Postfix, from userid 1000) id 0B329300F3; Fri, 6 Apr 2001 08:29:40 -0500 (CDT) Date: Fri, 6 Apr 2001 08:29:40 -0500 From: nicholas harteau To: freebsd-stable@freebsd.org Subject: Re: 4.2...er 3-RC & ipfilter Message-ID: <20010406082940.D3716@voyager.net> References: <20010405154038.O64531@voyager.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20010405154038.O64531@voyager.net>; from nrh@ikami.com on Thu, Apr 05, 2001 at 03:40:39PM -0500 Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I'm sorry, this is 4.3-RC, I'm just a little slow sometimes. Maybe that's why noone responded to my message ;) nicholas harteau wrote: > > I'm seeing an oddity on 4.2-RC with options IPFILTER > > ipfstat -io reports in and out reversed: > [root@farc sys/compile/FARC] tail -9 /etc/ipf.rules > block return-icmp(13) in log proto tcp from any to any port 0 >< 22 > block return-icmp(13) in log proto tcp from any to any port 22 >< 25 > block return-icmp(13) in log proto tcp from any to any port 25 >< 53 > block return-icmp(13) in log proto tcp from any to any port 53 >< 80 > block return-icmp(13) in log proto tcp from any to any port 80 >< 113 > block return-icmp(13) in log proto tcp from any to any port 113 >< 1025 > block return-icmp(13) in log proto tcp from any to any port = 3306 > block return-icmp(13) in log proto udp from any to any port ne 53 > block return-icmp(13) in log proto tcp/udp from any to any port = 111 > [root@farc sys/compile/FARC] ipfstat -io | tail -9 > empty list for ipfilter(in) > block return-icmp(filter-prohib) out log proto tcp from any to any port 0 >< 22 > block return-icmp(filter-prohib) out log proto tcp from any to any port 22 >< 25 > block return-icmp(filter-prohib) out log proto tcp from any to any port 25 >< 53 > block return-icmp(filter-prohib) out log proto tcp from any to any port 53 >< 80 > block return-icmp(filter-prohib) out log proto tcp from any to any port 80 >< 113 > block return-icmp(filter-prohib) out log proto tcp from any to any port 113 >< 1025 > block return-icmp(filter-prohib) out log proto tcp from any to any port = 3306 > block return-icmp(filter-prohib) out log proto udp from any to any port != 53 > block return-icmp(filter-prohib) out log proto tcp/udp from any to any port = sunrpc > > still functions fine, however (i.e. I'm blocking those in, not out) > > can someone confirm or deny this for me? I'm running a slightly mixed > codebase right now, so this may be an erroneous report. > > > -- > nicholas harteau > nrh@ikami.com > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-stable" in the body of the message -- nicholas harteau nrh@ikami.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message