On Sun, 6 Mar 2011, Dave Johnson wrote:
> Hi all
>
>
> An IPFW problem when going from release to stable on 8.2
>
> An help gladly accepted
>
> LOG ON
>
> Flushed all rules.
> 00010 allow ip from 127.0.0.1 to 127.0.0.1 via lo0
> 00030 div
Hi all
An IPFW problem when going from release to stable on 8.2
An help gladly accepted
LOG ON
Flushed all rules.
00010 allow ip from 127.0.0.1 to 127.0.0.1 via lo0
00030 divert 8668 ip from any to any via bge0
ipfw: getsockopt(IP_FW_ADD): Invalid argument
5 allow ip from any to any
obviously you did some other commands here..
something generated 2 million packets..
Julian, its a production enviroment, firewall was up for a few
minutes. Thats the reason.
I was thinking of adding a 'reroute' ipfw keyword.. kind of like
'fwd {original dest} ip from any to any'
because 'fwd'
On Mon, Jan 19, 2009 at 2:24 PM, Luiz Otavio O Souza wrote:
>>> obviously you did some other commands here..
>>> something generated 2 million packets..
>>
>> Julian, its a production enviroment, firewall was up for a few
>> minutes. Thats the reason.
>>
>>> I was thinking of adding a 'reroute' ip
obviously you did some other commands here..
something generated 2 million packets..
Julian, its a production enviroment, firewall was up for a few
minutes. Thats the reason.
I was thinking of adding a 'reroute' ipfw keyword.. kind of like
'fwd {original dest} ip from any to any'
because 'fwd'
> obviously you did some other commands here..
> something generated 2 million packets..
Julian, its a production enviroment, firewall was up for a few
minutes. Thats the reason.
> I was thinking of adding a 'reroute' ipfw keyword.. kind of like
> 'fwd {original dest} ip from any to any'
> becaus
Eduardo Meyer wrote:
Hello,
I am trying the new FIB stuff on -STABLE with IPFW, I made many tests
and it did not work as I expected.
Quick testing:
# lynx -dump http://www.whatismyip.org
200.165.75.10
# setfib -1 lynx -dump http://www.whatismyip.org
189.52.141.2
# setfib -2 lynx -dump http:/
Hello,
I am trying the new FIB stuff on -STABLE with IPFW, I made many tests
and it did not work as I expected.
Quick testing:
# lynx -dump http://www.whatismyip.org
200.165.75.10
# setfib -1 lynx -dump http://www.whatismyip.org
189.52.141.2
# setfib -2 lynx -dump http://www.whatismyip.org
20
Hello,
I am trying the new FIB stuff on -STABLE with IPFW, I made many tests
and it did not work as I expected.
Quick testing:
# lynx -dump http://www.whatismyip.org
200.165.75.10
# setfib -1 lynx -dump http://www.whatismyip.org
189.52.141.2
# setfib -2 lynx -dump http://www.whatismyip.org
201
You need to reconsider the entire ruleset. Begin with a structured
ruleset such as the following and build from there. Use a discrete
ruleset for the router host.
check-state
allow ip from me to any keep-state
deny ip from me to any
allow icmp from any to me icmptypes 3,4,8,11 keep-state
den
Dave Johnson wrote:
> Hi all
>
> I am having a problem with ipfw.
>
> Please have a look at www.pastebin.com/597707
>
> I could not ping anything so I hashed out line 62 & 70
>
> Now I can ping 192.168.0.2 but not 192.168.0.1.
>
> Also browsing and email is not working.
Um. Your IPFW rule
Hi all
I am having a problem with ipfw.
Please have a look at www.pastebin.com/597707
I could not ping anything so I hashed out line 62 & 70
Now I can ping 192.168.0.2 but not 192.168.0.1.
Also browsing and email is not working.
Thanks
Regards
_
12 matches
Mail list logo
