From owner-freebsd-questions@FreeBSD.ORG Wed May 2 20:29:12 2007 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 49BEB16A404 for ; Wed, 2 May 2007 20:29:12 +0000 (UTC) (envelope-from tuneler@bsdmail.com) Received: from webmail-outgoing.us4.outblaze.com (webmail-outgoing.us4.outblaze.com [205.158.62.67]) by mx1.freebsd.org (Postfix) with ESMTP id 2D16B13C45D for ; Wed, 2 May 2007 20:29:12 +0000 (UTC) (envelope-from tuneler@bsdmail.com) Received: from unknown (unknown [192.168.9.180]) by webmail-outgoing.us4.outblaze.com (Postfix) with QMQP id 0B0A81800D5F for ; Wed, 2 May 2007 20:29:12 +0000 (GMT) X-OB-Received: from unknown (205.158.62.16) by wfilter.us4.outblaze.com; 2 May 2007 20:29:12 -0000 Received: by ws5-10.us4.outblaze.com (Postfix, from userid 1001) id 01FDD7AEB8; Wed, 2 May 2007 20:29:11 +0000 (GMT) Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset="iso-8859-1" MIME-Version: 1.0 From: "Tun Eler" To: freebsd-questions@freebsd.org Date: Wed, 2 May 2007 22:29:11 +0200 Received: from [217.83.122.17] by ws5-10.us4.outblaze.com with http for tuneler@bsdmail.com; Wed, 2 May 2007 22:29:11 +0200 X-Originating-Ip: 217.83.122.17 X-Originating-Server: ws5-10.us4.outblaze.com Message-Id: <20070502202911.01FDD7AEB8@ws5-10.us4.outblaze.com> Subject: IP FILTER and network address X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 02 May 2007 20:29:12 -0000 Hi all, i want to have these two rules in the ipf.rules file pass in quick on $oif proto tcp from 217.83.122.17/8 to $myip port =3D 22 f= lags S keep state pass in quick on $oif proto tcp from 217.83.89.61/8 to $myip port =3D 22 fl= ags S keep state where $iof is my interface. Executing the config file i get the following e= rror ioctl(add/insert rule): File exists Which means the rule is being loaded twice. But the networka addresses abov= e are different!!! If i comment any of the above two lines, ipf executes fine. Any idea how to solve this error, and allow only these two networks above? Thanks in advance ... --=20 _______________________________________________ Get your free email from http://bsdmail.com