Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 12 Sep 2006 21:07:14 -0700 (PDT)
From:      "Freddie Cash" <fcash@ocis.net>
To:        "Jin Guojun [VFFS]" <j_guojun@lbl.gov>
Cc:        ipfw@freebsd.org
Subject:   Re: maximum deny entries?
Message-ID:  <60554.24.71.118.34.1158120434.squirrel@webmail.sd73.bc.ca>
In-Reply-To: <4507539A.5000502@lbl.gov>
References:  <4507539A.5000502@lbl.gov>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
On Tue, September 12, 2006 5:40 pm, Jin Guojun [VFFS] wrote:
> I am not sure if this is a bug or is there some limitation for total
> deny entry, when the deny list exceeds a certain length (36 lines at
> this case), ipfw stop working (see the *** line below).
>
> This is on 6.1-R i386 platform.
> Is there know problem on this issue? or Did I made some mistake?
>
> Please CC to me since I am not on the list.

Works fine here, with 62 deny rules out of 533 rules in total.  While
not every deny rule has a matched packet so far, the rules under them
all work fine.

----
Freddie Cash
fcash@ocis.net




Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?60554.24.71.118.34.1158120434.squirrel>