From owner-freebsd-hackers Thu Jan 16 17:38:50 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id RAA01314 for hackers-outgoing; Thu, 16 Jan 1997 17:38:50 -0800 (PST) Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by freefall.freebsd.org (8.8.4/8.8.4) with ESMTP id RAA01307; Thu, 16 Jan 1997 17:38:48 -0800 (PST) Received: (from smap@localhost) by whistle.com (8.7.5/8.6.12) id RAA17058; Thu, 16 Jan 1997 17:38:16 -0800 (PST) Received: from bubba.whistle.com(207.76.205.7) by whistle.com via smap (V1.3) id sma017056; Thu Jan 16 17:37:49 1997 Received: (from archie@localhost) by bubba.whistle.com (8.7.5/8.6.12) id RAA27235; Thu, 16 Jan 1997 17:37:49 -0800 (PST) From: Archie Cobbs Message-Id: <199701170137.RAA27235@bubba.whistle.com> Subject: Re: ipfw patches to test In-Reply-To: <199701162209.WAA01624@awfulhak.demon.co.uk> from Brian Somers at "Jan 16, 97 10:09:08 pm" To: brian@awfulhak.demon.co.uk (Brian Somers) Date: Thu, 16 Jan 1997 17:37:48 -0800 (PST) Cc: proff@suburbia.net, phk@FREEBSD.ORG, hackers@FREEBSD.ORG X-Mailer: ELM [version 2.4ME+ PL25 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-hackers@FREEBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > > > Basically you can now say > > > > > > ipfw add deny !from 192.168.23.0/30 to 140.145.230.0/24 > > > > > > or "!to" for that matter. Give it a whirl... > > > > > > Poul-Henning > > > > This is a good addition. When I was playing with the code I was > > quite puzzeled about the lack of this negative logic. > > What's the difference between the above and > > ipfw add allow from 192.168.23.0/30 to 140.145.230.0/24 > ipfw add deny from any to 140.145.230.0/24 It's easier to read? ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com