https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=283709
Bug ID: 283709
Summary: ipfw OR block does not work as expected
Product: Base System
Version: 15.0-CURRENT
Hardware: Any
OS: Any
Status: New
Severity: Affects Only Me
Priority: ---
Component: kern
Assignee: b...@freebsd.org
Reporter: michael....@gmail.com
net.inet.ip.fw.one_pass: 1
Working combination of rules:
ipfw table 0 add b.b.b.b
ipfw table 0 add c.c.c.c
ipfw table 3 add 8.8.8.8
ipfw table 3 add 1.1.1.1
ipfw add 20 allow udp from 'table(0)' to a.a.a.a in recv hn3
ipfw add 21 allow udp from a.a.a.a to 'table(0)' out xmit hn3
ipfw add 102 deny udp from not 'table(3)' to a.a.a.a in recv hn3
...
ipfw add 65534 allow all from any to any
I need to replace these three rules ("20","21","102") with one like this:
ipfw add 15 deny udp from { not 'table(0)' or not 'table(3)' } to a.a.a.a in
recv hn3
and traffic from IP addresses in these tables ("0" and "3") is blocked.
Tell me where am I wrong in the "15" rule?
--
You are receiving this mail because:
You are the assignee for the bug.
