Date: Tue, 12 Sep 2006 21:07:14 -0700 (PDT) From: "Freddie Cash" <fcash@ocis.net> To: "Jin Guojun [VFFS]" <j_guojun@lbl.gov> Cc: ipfw@freebsd.org Subject: Re: maximum deny entries? Message-ID: <60554.24.71.118.34.1158120434.squirrel@webmail.sd73.bc.ca> In-Reply-To: <4507539A.5000502@lbl.gov> References: <4507539A.5000502@lbl.gov>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, September 12, 2006 5:40 pm, Jin Guojun [VFFS] wrote: > I am not sure if this is a bug or is there some limitation for total > deny entry, when the deny list exceeds a certain length (36 lines at > this case), ipfw stop working (see the *** line below). > > This is on 6.1-R i386 platform. > Is there know problem on this issue? or Did I made some mistake? > > Please CC to me since I am not on the list. Works fine here, with 62 deny rules out of 533 rules in total. While not every deny rule has a matched packet so far, the rules under them all work fine. ---- Freddie Cash fcash@ocis.net
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?60554.24.71.118.34.1158120434.squirrel>