Date: Thu, 18 Apr 2013 08:22:42 GMT From: Jukka Ukkonen <jau@oxit.fi> To: freebsd-gnats-submit@FreeBSD.org Subject: kern/177948: ipfw fails to parse port ranges (p1-p2) for udp Message-ID: <201304180822.r3I8MgRg030110@red.freebsd.org> Resent-Message-ID: <201304180830.r3I8U1us089114@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 177948 >Category: kern >Synopsis: ipfw fails to parse port ranges (p1-p2) for udp >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Thu Apr 18 08:30:00 UTC 2013 >Closed-Date: >Last-Modified: >Originator: Jukka Ukkonen >Release: 9.1-STABLE >Organization: - >Environment: FreeBSD sleipnir 9.1-STABLE FreeBSD 9.1-STABLE #0 r249607M: Thu Apr 18 09:18:42 EEST 2013 root@sleipnir:/usr/obj/usr/src/sys/Sleipnir amd64 >Description: ipfw does not understand port ranges on lines like this... add 03011 deny log udp from any to any 1024-65535 in recv em1 Instead of treating the numbers and the dash between them as a port range it complains about "-65535". The error has been occurring only when the protocol has been UDP. When the protocol is TCP ipfw properly handles the port range as expected. Notice that SCTP has not been tested. >How-To-Repeat: Try adding a configuration line like the one shown in "full description", restart ipfw, and see it complain something like this... Line 7368: unrecognised option [-1] -65535 >Fix: No idea yet. >Release-Note: >Audit-Trail: >Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201304180822.r3I8MgRg030110>