From owner-freebsd-ipfw  Thu Sep 19 10:50:55 2002
Delivered-To: freebsd-ipfw@freebsd.org
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id EA67837B401
	for <freebsd-ipfw@FreeBSD.ORG>; Thu, 19 Sep 2002 10:50:54 -0700 (PDT)
Received: from mail44.fg.online.no (mail44-s.fg.online.no [148.122.161.44])
	by mx1.FreeBSD.org (Postfix) with ESMTP id A5B9743E42
	for <freebsd-ipfw@FreeBSD.ORG>; Thu, 19 Sep 2002 10:50:53 -0700 (PDT)
	(envelope-from soppscum@online.no)
Received: from spam.no (ti400720a080-2077.bb.online.no [80.212.168.29])
	by mail44.fg.online.no (8.9.3/8.9.3) with SMTP id TAA05306
	for <freebsd-ipfw@FreeBSD.ORG>; Thu, 19 Sep 2002 19:50:49 +0200 (MEST)
Date: Thu, 19 Sep 2002 19:50:54 +0200
From: MIchael <soppscum@online.no>
To: freebsd-ipfw@FreeBSD.ORG
Subject: OUCH! Cannot remove rules, count 1
Message-Id: <20020919195054.4040d14a.soppscum@online.no>
X-Mailer: Sylpheed version 0.8.2 (GTK+ 1.2.10; i586-pc-linux-gnu)
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-ipfw@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-ipfw.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-ipfw>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-ipfw>
X-Loop: FreeBSD.ORG

I'm getting alot of "OUCH! cannot remove rules, count 1" in my logs laitly
Does anyone know what this means?
Searching google it seems that it's related to the limit option in ipfw.

I'm running FreeBSD 4.6.2 on a Cyrix166 with 49ram
rules with limit in my firewall script :

$cmd 00641 allow tcp from any to any 2001 in via $oif setup keep-state limit src-addr 4
$cmd 00642 allow udp from any to any 2001 in via $oif keep-state limit src-addr 4
$cmd 00643 allow tcp from any to any 2002 in via $oif setup keep-state limit src-addr 4
$cmd 00644 allow udp from any to any 2002 in via $oif keep-state limit src-addr 4
$cmd 00645 allow tcp from any to any 2003 in via $oif setup keep-state limit src-addr 4
$cmd 00646 allow udp from any to any 2003 in via $oif keep-state limit src-addr 4
$cmd 00600 allow tcp from any to any 80 in via $oif setup keep-state limit src-addr 4
$cmd 00621 allow log tcp from any to me 9000 in via $oif setup keep-state limit src-addr 4
$cmd 00640 reset log tcp from any to me 113  in via $oif limit src-addr 4

Thanks

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ipfw" in the body of the message