From owner-freebsd-bugs Wed Feb 27 4:30: 9 2002 Delivered-To: freebsd-bugs@hub.freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21]) by hub.freebsd.org (Postfix) with ESMTP id 338BA37B402 for ; Wed, 27 Feb 2002 04:30:02 -0800 (PST) Received: (from gnats@localhost) by freefall.freebsd.org (8.11.6/8.11.6) id g1RCU2h44455; Wed, 27 Feb 2002 04:30:02 -0800 (PST) (envelope-from gnats) Date: Wed, 27 Feb 2002 04:30:02 -0800 (PST) Message-Id: <200202271230.g1RCU2h44455@freefall.freebsd.org> To: freebsd-bugs@FreeBSD.org Cc: From: Ruslan Ermilov Subject: Re: i386/34977: IPFW UID/GID Based Filtering doesn't work in 4.5 Reply-To: Ruslan Ermilov Sender: owner-freebsd-bugs@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org The following reply was made to PR i386/34977; it has been noted by GNATS. From: Ruslan Ermilov To: Han Hwei Woo Cc: bug-followup@FreeBSD.org Subject: Re: i386/34977: IPFW UID/GID Based Filtering doesn't work in 4.5 Date: Wed, 27 Feb 2002 14:27:53 +0200 On Fri, Feb 15, 2002 at 11:01:30AM -0800, Han Hwei Woo wrote: > > Since I updated my source/rebuilt the system from 4.4-STABLE to > 4.5-STABLE, any rules in IPFW with UID/GID based filtering have no > effect. > Here are the rules: > 20100 allow tcp from any to 216.18.3.69 in > 20200 allow tcp from 216.18.3.69 to any uid hhw out > 20900 deny tcp from 216.18.3.69 to any > I am certain it has to do with the UID part, since if I add an additional rule: > 20300 allow tcp from 216.18.3.69 to any out > Packets are able to get through. > Seems to work OK here. Cheers, -- Ruslan Ermilov Sysadmin and DBA, ru@sunbay.com Sunbay Software AG, ru@FreeBSD.org FreeBSD committer, +380.652.512.251 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message