Date: Wed, 29 Sep 2004 16:48:23 +1000 (EST) From: Leon Garde <leon@nelsonbay.com> To: freebsd-net@freebsd.org, freebsd-bugs@freebsd.org Subject: IPFW and 5.2.1 Message-ID: <20040929162559.P31282@localhost>
next in thread | raw e-mail | index | archive | help
Any explanation or fix for my problem with ipfw ... yes I did search the mailing list archives, couldnt find anything relevant. Kernel 5.2.1, freshly loaded off CD, as in rm -rf /usr/src/* ../install.sh base ../install.sh tools ../install.sh sys cp ~leon/GUASS /usr/src/sys/i386/conf/GUASS cd /usr/src make buildkernel KERNCONF=GUASS make installkernel KERNCONF=GUASS reboot Its a relatively fresh install of 5.2.1.. and a picobsd style install derived from same. guass# ipfw -a list 00001 0 0 deny ip from any to 203.222.55.37 via rl0 65535 1287 499525 allow ip from any to any guass# ping 203.222.55.37 PING 203.222.55.37 (203.222.55.37): 56 data bytes 64 bytes from 203.222.55.37: icmp_seq=0 ttl=255 time=0.281 ms 64 bytes from 203.222.55.37: icmp_seq=1 ttl=255 time=0.207 ms < packets are flowing by rl0, despite the ipfw rule to stop them !, rl0 being the only network interface 'connected' ) guass# ipfw delete 1 guass# ipfw add 1 deny ip from any to any guass# ping 203.222.55.37 < No answer, like u would hope> Yes, I have searched archives. Why does "via rl0" , "in recv rl0" , "out xmit rl0" , (or via wi0, in recv wi0, out xmit wi0 ) Is it a known bug ? Can't think of anything else relevant to add. ipfw seems seriously broken in 5.2.1 ??? ------------------------ Leon leon@nelsonbay.com Ph 02 4984 1422
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040929162559.P31282>