Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 12 Sep 2006 21:07:34 -0700 (PDT)
From:      "Freddie Cash" <>
To:        "Jin Guojun [VFFS]" <>
Subject:   Re: maximum deny entries?
Message-ID:  <>
In-Reply-To: <>
References:  <>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
On Tue, September 12, 2006 5:40 pm, Jin Guojun [VFFS] wrote:
> I am not sure if this is a bug or is there some limitation for total
> deny entry, when the deny list exceeds a certain length (36 lines at
> this case), ipfw stop working (see the *** line below).
> This is on 6.1-R i386 platform.
> Is there know problem on this issue? or Did I made some mistake?
> Please CC to me since I am not on the list.

Works fine here, with 62 deny rules out of 533 rules in total.  While
not every deny rule has a matched packet so far, the rules under them
all work fine.

FreeBSD 6.1-p6, i386 (P2 333 MHz box).
Freddie Cash

Want to link to this message? Use this URL: <>