From owner-freebsd-current@FreeBSD.ORG Sun Dec 7 06:01:06 2003 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6C99F16A4D1 for ; Sun, 7 Dec 2003 06:01:06 -0800 (PST) Received: from passion.hsins.com (sw59-121-24.adsl.seed.net.tw [61.59.121.24]) by mx1.FreeBSD.org (Postfix) with ESMTP id C66DD43F93 for ; Sun, 7 Dec 2003 06:01:04 -0800 (PST) (envelope-from ktsin@acm.org) Received: from passion.hsins.com (localhost.hsins.com [127.0.0.1]) hB7E12aM063563; Sun, 7 Dec 2003 22:01:02 +0800 (MYT) (envelope-from ktsin@acm.org) Received: (from ktsin@localhost) by passion.hsins.com (8.12.10/8.12.10/Submit) id hB7E10Yk063562; Sun, 7 Dec 2003 22:01:00 +0800 (MYT) (envelope-from ktsin@acm.org) Date: Sun, 7 Dec 2003 22:01:00 +0800 From: KT Sin To: Alfred Perlstein Message-ID: <20031207140100.GA63013@passion.hsins.com> References: <20031206134303.GG75620@elvis.mu.org> <20031206134723.GH75620@elvis.mu.org> Mime-Version: 1.0 Content-Type: text/plain; charset=big5 Content-Disposition: inline In-Reply-To: <20031206134723.GH75620@elvis.mu.org> User-Agent: Mutt/1.5.5.1i cc: current@freebsd.org Subject: Re: ipfw breakage in 5.2 X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 07 Dec 2003 14:01:06 -0000 Had this problem before, when the kernel and userland got out of sync. kt On Sat, Dec 06, 2003 at 05:47:23AM -0800, Alfred Perlstein wrote: > Ok, nevermind, I don't see how 'lo' got used instead of 'lo0' > but that's what appears to have caused it. > > * Alfred Perlstein [031206 05:43] wrote: > > Sorry if this is a false alarm, but with the "open" firewall > > ruleset in effect: > > > > # ipfw l > > 00100 allow ip from any to any via lo > > 00200 deny ip from any to 127.0.0.0/8 > > 00300 deny ip from 127.0.0.0/8 to any > > 65000 allow ip from any to any > > 65535 allow ip from any to any > > > > I can't ping my loopback: > > > > # ping localhost > > PING localhost (127.0.0.1): 56 data bytes > > ping: sendto: Permission denied > > > > is this known/expected? > > > > > > -- > > - Alfred Perlstein > > - Research Engineering Development Inc. > > - email: bright@mu.org cell: 408-480-4684 > > -- > - Alfred Perlstein > - Research Engineering Development Inc. > - email: bright@mu.org cell: 408-480-4684