From owner-freebsd-net Tue May 2 9:30:22 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.dbitech.bc.ca (i.caniserv.com [139.142.95.1]) by hub.freebsd.org (Postfix) with SMTP id 8E55437B568 for ; Tue, 2 May 2000 09:30:08 -0700 (PDT) (envelope-from darcy@ok-connect.com) Received: (qmail 16236 invoked from network); 2 May 2000 16:30:07 -0000 Received: from ccliii.caniserv.com (HELO dbitech) (darcyb@139.142.95.253) by 139.142.95.8 with SMTP; 2 May 2000 16:30:07 -0000 Message-Id: <3.0.32.20000502093205.019446b0@mail.ok-connect.com> X-Sender: darcyb@mail.ok-connect.com X-Mailer: Windows Eudora Pro Version 3.0 (32) Date: Tue, 02 May 2000 09:32:05 -0700 To: freebsd-net@FreeBSD.ORG From: Darcy Buskermolen Subject: ipfw and rule strangeness Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I have a program that I use to dynamically create and destroy ipfw rules, however I just noticed something rather frustrating... # ipfw add deny ip from hacker.host to server.host 00000 deny ip from hacker.host to server.host # ipfw show 00000 ipfw: rule 0 does not exist Looks like the rule number that is being echo'd back is not the same rule it applied to the rule. (my work around has been to grep for deny ip from hacker.host to server.host and grab that rule number, but that seams like a bad way of doing it) My question, is this the expected behavior, or is it not, and while I'm on the subject is there a way to change the default increment from 100 to something smaller ? \\DB To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message