From owner-freebsd-ipfw Wed Jul 10 2:51:18 2002 Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B070B37B400 for ; Wed, 10 Jul 2002 02:51:15 -0700 (PDT) Received: from anastasia.lan.blastermaster.de (pD956129A.dip.t-dialin.net [217.86.18.154]) by mx1.FreeBSD.org (Postfix) with SMTP id 437C743E52 for ; Wed, 10 Jul 2002 02:51:14 -0700 (PDT) (envelope-from jt@barfoos.de) Received: (qmail 29377 invoked by uid 1001); 10 Jul 2002 09:51:12 -0000 Date: Wed, 10 Jul 2002 11:51:12 +0200 From: Jens Trzaska To: Luigi Rizzo Cc: ipfw@freebsd.org Subject: Re: ipfw2 patches for -stable available Message-ID: <20020710095112.GB28611@anastasia.lan.blastermaster.de> References: <20020709023203.A83270@iguana.icir.org> <20020710092337.GB27538@anastasia.lan.blastermaster.de> <20020710023145.A91972@iguana.icir.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20020710023145.A91972@iguana.icir.org> X-Operating-System: FreeBSD 4.6-STABLE, i386 X-GPG-Key-ID: = 96FE36DB X-GPG-Key-Fingerprint: 1C9B 7EF8 1A22 1740 9F1B AB7B 17D2 64E1 96FE 36DB X-GPG-Key-Location: http://www.elug.de/schluessel/96FE36DB.asc X-Accept-Language: de,en User-Agent: Mutt/1.5.1i Sender: owner-freebsd-ipfw@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Wed, Jul 10, 2002 at 02:31:45AM -0700, Luigi Rizzo wrote: > On Wed, Jul 10, 2002 at 11:23:37AM +0200, Jens Trzaska wrote: > > On Tue, Jul 09, 2002 at 02:32:04AM -0700, Luigi Rizzo wrote: > > > [Bcc to -stable as relevant there] > > > > > > As the subject says, the latest patches to run ipfw2 on -stable are at > > > > > > http://info.iet.unipi.it/~luigi/ipfw2.stable.020709.diffs > > > > Great work. No problems so far. > > > > But one question. Does the code also allow the new OR syntax you > > mentioned in -net? I tried to insert the following rule but it does > > not work. > > you need to put braces around the OR block (one person > suggested that to avoid ambiguity). > Either braces {} or parentheses () do, but the latter need > to be escaped from the shell. > > > anastasia:~#ipfw add allow ip from 10.11.9.3 or 10.11.9.2 to any > > ipfw add allow ip from { 10.11.9.3 or 10.11.9.2 } to any > > also: > > ipfw add allow ip from 10.11.9.0/24{2,3} to any > > does the same in this case. Cool. *g* But is that o.k.? anastasia:~#ipfw add 5900 allow ip from { 10.11.9.3 or 10.11.9.2 } to any 05900 allow ip from { 10.11.9.3 or 10.11.9.2 } to any 05900 allow ip from { 10.11.9.3 or 10.11.9.2 } to any It shows the rule 2 times. Jens -- KeyID=96FE36DB Key fingerprint=1C9B 7EF8 1A22 1740 9F1B AB7B 17D2 64E1 96FE 36DB To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message