From owner-freebsd-hackers@FreeBSD.ORG  Fri Jan  6 00:12:13 2006
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
X-Original-To: freebsd-hackers@freebsd.org
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 66EFE16A41F
	for <freebsd-hackers@freebsd.org>; Fri,  6 Jan 2006 00:12:13 +0000 (GMT)
	(envelope-from nessup@gmail.com)
Received: from fed1rmmtao04.cox.net (fed1rmmtao04.cox.net [68.230.241.35])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 0DDAE43D5C
	for <freebsd-hackers@freebsd.org>; Fri,  6 Jan 2006 00:12:12 +0000 (GMT)
	(envelope-from nessup@gmail.com)
Received: from [192.168.1.2] (really [68.111.13.24]) by fed1rmmtao04.cox.net
	(InterMail vM.6.01.05.02 201-2131-123-102-20050715) with ESMTP
	id <20060106001005.JYMS17690.fed1rmmtao04.cox.net@[192.168.1.2]>;
	Thu, 5 Jan 2006 19:10:05 -0500
In-Reply-To: <20060105165705.GA37331@walton.maths.tcd.ie>
References: <a280f1c696571b105ef9a49b1dabca22@gmail.com>
	<20060105165705.GA37331@walton.maths.tcd.ie>
Mime-Version: 1.0 (Apple Message framework v623)
Content-Type: text/plain; charset=US-ASCII; format=flowed
Message-Id: <caef11baa786f702636761c73ccf7237@gmail.com>
Content-Transfer-Encoding: 7bit
From: Dan Joumaa <nessup@gmail.com>
Date: Thu, 5 Jan 2006 17:12:11 -0700
To: David Malone <dwmalone@maths.tcd.ie>
X-Mailer: Apple Mail (2.623)
Cc: freebsd-hackers@freebsd.org
Subject: Re: Invalid ipfirewall rule?
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>, 
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Jan 2006 00:12:13 -0000


On Jan 5, 2006, at 9:57 AM, David Malone wrote:

> On Wed, Jan 04, 2006 at 05:59:44PM -0700, Dan Joumaa wrote:
>>    entry->fw_prot = IPPROTO_TCP|IPPROTO_UDP;
>
> This may not be your problem, but I think you need two rules to do
> this the protocol number is a 8 bit number, not a bit field (ie.
> IPPROTO_TCP is 6 and IPPROTO_UDP is 17, so oring them together
> doesn't make sense).
>

I tried it either way and got the same results.

--ness