From owner-freebsd-ipfw@FreeBSD.ORG  Sun Apr 21 11:40:02 2013
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
Delivered-To: freebsd-ipfw@smarthost.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by hub.freebsd.org (Postfix) with ESMTP id 4BD02839
 for <freebsd-ipfw@smarthost.ysv.freebsd.org>;
 Sun, 21 Apr 2013 11:40:02 +0000 (UTC)
 (envelope-from gnats@FreeBSD.org)
Received: from freefall.freebsd.org (freefall.freebsd.org
 [IPv6:2001:1900:2254:206c::16:87])
 by mx1.freebsd.org (Postfix) with ESMTP id 3DA1F106A
 for <freebsd-ipfw@smarthost.ysv.freebsd.org>;
 Sun, 21 Apr 2013 11:40:02 +0000 (UTC)
Received: from freefall.freebsd.org (localhost [127.0.0.1])
 by freefall.freebsd.org (8.14.6/8.14.6) with ESMTP id r3LBe1te011589
 for <freebsd-ipfw@freefall.freebsd.org>; Sun, 21 Apr 2013 11:40:01 GMT
 (envelope-from gnats@freefall.freebsd.org)
Received: (from gnats@localhost)
 by freefall.freebsd.org (8.14.6/8.14.6/Submit) id r3LBe1cT011588;
 Sun, 21 Apr 2013 11:40:01 GMT (envelope-from gnats)
Date: Sun, 21 Apr 2013 11:40:01 GMT
Message-Id: <201304211140.r3LBe1cT011588@freefall.freebsd.org>
To: freebsd-ipfw@FreeBSD.org
Cc: 
From: Jukka Ukkonen <jau@oxit.fi>
Subject: Re: kern/177948: [ipfw] ipfw fails to parse port ranges (p1-p2) for
 udp
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
Reply-To: Jukka Ukkonen <jau@oxit.fi>
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-ipfw>,
 <mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
 <mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 21 Apr 2013 11:40:02 -0000

The following reply was made to PR kern/177948; it has been noted by GNATS.

From: Jukka Ukkonen <jau@oxit.fi>
To: Ian Smith <smithi@nimnet.asn.au>
Cc: bug-followup@FreeBSD.org
Subject: Re: kern/177948: [ipfw] ipfw fails to parse port ranges (p1-p2) for
 udp
Date: Sun, 21 Apr 2013 14:33:07 +0300

 On 04/21/13 05:17, Ian Smith wrote:
 > I can't reproduce this on 9.1-RELEASE, unless I put a space anywhere
 > amongst p1, '-' and p2, in which case I see the same error you show.
 >
 > # ipfw add 03011 deny log udp from any to any 1024-65535 in recv fxp0
 > 03011 deny log udp from any to any dst-port 1024-65535 in recv fxp0
 > # ipfw list 3011
 > 03011 deny log udp from any to any dst-port 1024-65535 in recv fxp0
 >
 > # ipfw add 03011 deny log udp from any to any 1024 -65535 in recv fxp0
 > ipfw: unrecognised option [-1] -65535
 >
 > # ipfw add 03011 deny log udp from any to any 1024- 65535 in recv fxp0
 > ipfw: unrecognised option [-1] 1024-
 >
 > Can you verify that there is no whitespace (obvious, or perhaps some
 > non-printing character?) on or near line 7368 of your config file?
 >
 > If that looks ok, can you show the byte offset of that line in your
 > file, for example by placing that line at the bottom of the screen in
 > less(1) then pressing '='?
 >
 > cheers, Ian
 
 Right,
 
 After some further inspection I have news...
 
 This seems to be a problem in clang-cpp which adds an extra space
 before the dash in a macro which should have a value of the format
 "number1-number2". So, e.g. "1024-65535" becomes "1024 -65535".
 
 If I use gcpp instead, everything works just fine with ipfw.
 
 The fact that I did not see this happening with TCP rules as well was
 just lucky coincidence.
 
 So, this is a clang problem, not an ipfw problem!!!
 
 Cheers,
 --jau