Date: Sun, 17 Nov 2002 10:45:12 -0800 From: Michael Sierchio <kudzu@tenebras.com> To: Luigi Rizzo <rizzo@icir.org> Cc: ipfw@FreeBSD.ORG Subject: Stateful rule logging behavior Message-ID: <3DD7E3B8.2030905@tenebras.com> References: <200211130102.27773.john@jnielsen.net> <20021113003045.A35862@xorpc.icir.org> <3DD7D3CC.50701@tenebras.com> <20021117093955.A17750@xorpc.icir.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Of course, it is possible to get the desired behavior by writing two rules instead of one: $fw add count log tcp from $ssh_hosts to $prv_net ssh setup $fw add allow tcp from $ssh_hosts to $prv_net ssh setup keep-state Unless you can think of something more innocuous than 'count' To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3DD7E3B8.2030905>