From owner-freebsd-ipfw@FreeBSD.ORG  Sun Feb  4 14:44:48 2007
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
X-Original-To: freebsd-ipfw@freebsd.org
Delivered-To: freebsd-ipfw@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id EF9C016A400
	for <freebsd-ipfw@freebsd.org>; Sun,  4 Feb 2007 14:44:48 +0000 (UTC)
	(envelope-from prvs=astraserg/0555aa3f3c@proc.ru)
Received: from mail.proc.ru (mail.proc.ru [217.117.112.5])
	by mx1.freebsd.org (Postfix) with ESMTP id AE0B513C481
	for <freebsd-ipfw@freebsd.org>; Sun,  4 Feb 2007 14:44:48 +0000 (UTC)
	(envelope-from prvs=astraserg/0555aa3f3c@proc.ru)
Received: from uranium.proc.ru ([217.117.127.77])
	by mail.proc.ru with esmtps (TLSv1:DHE-RSA-AES256-SHA:256) 
	(envelope-from <astraserg@proc.ru>) id 1HDi4m-0006YS-8U
	for freebsd-ipfw@freebsd.org; Sun, 04 Feb 2007 17:10:40 +0300
From: AstraSerg <astraserg@proc.ru>
Organization: Proc.ru
To: freebsd-ipfw@freebsd.org
Date: Sun, 4 Feb 2007 17:10:38 +0300
User-Agent: KMail/1.9.5
MIME-Version: 1.0
Content-Type: text/plain;
  charset="koi8-r"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Message-Id: <200702041710.38797.astraserg@proc.ru>
X-SpamTest-Envelope-From: astraserg@proc.ru
X-SpamTest-Info: Profiles 743 [Feb 02 2007]
X-SpamTest-Info: {received from trusted relay: common white list}
X-SpamTest-Method: white ip list
X-SpamTest-Rate: 0
X-SpamTest-Status: Trusted
X-SpamTest-Status-Extended: trusted
Subject: Big tables deny pakets
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: astraserg@proc.ru
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 04 Feb 2007 14:44:49 -0000

Good day
I use big tables in my ipfw. There are some trables

gate# date ; ipfw show 2101 2102 2103
Sun Feb  4 17:07:01 MSK 2007
02101      97       5800 skipto 2102 ip from 192.168.122.17 to any
02102     150      10348 deny ip from table(64) to any
02103       0          0 skipto 2104 ip from 192.168.122.17 to any
gate#                                                                           



gate# date ; ipfw show 2101 2102 2103
Sun Feb  4 17:07:29 MSK 2007
02101     102       6100 skipto 2102 ip from 192.168.122.17 to any
02102     155      10648 deny ip from table(64) to any
02103       0          0 skipto 2104 ip from 192.168.122.17 to any
gate#                                                                        

Why counter 2103 not rgowing?

gate# ipfw table 64 list | grep 192.168.122
192.168.122.2/32 0
192.168.122.5/32 0
192.168.122.15/32 0
192.168.122.16/32 0
192.168.122.131/32 0
192.168.122.135/32 0
192.168.122.146/32 0
gate#            

and 

gate# ipfw table 64 list | grep -v /32
gate#                                              
                              
gate# uname -a
FreeBSD gate.proc.ru 6.2-PRERELEASE FreeBSD 6.2-PRERELEASE #1: Tue Oct 10 
21:48:09 MSD 2006 

Thanks