In reply to Luigi Rizzo <[EMAIL PROTECTED]> : > is this with ipfw1 or ipfw2 or both ? > > cheers > luigi > > On Fri, Jan 24, 2003 at 03:56:54AM -0800, Josh Brooks wrote: > > > > I have inserted this ipfw rule, based on guidance from the archives: > > > > count icmp from any to any icmptype 4,5,9,10,12,13,14,15,16,17,18 > > > > Now, I am watching that count rule, and it keeps growing. This means that > > people are sending me packets other than types 0,3,8,11. > > > > So I wanted to see what they were: > > > > tcpdump -vvv -n | grep -v echo | grep -v unreach | grep -v exceeded
Are you sure tcpdump is attaching to the correct interface?
--eli
> >
> > and I let that run for hours and hours and hours - and during that time,
> > the counter continued to grow and grow, but my screen where I was running
> > tcpdump stayed blank - I never saw a single packet.
> >
> > So how is it that the counter for the above rule can grow and grow and
> > grow, but I never see a single ICMP message that says anything besides
> > "echo", "unreach" or "exceeded" ?
> >
> > thanks.
> >
> >
> > To Unsubscribe: send mail to [EMAIL PROTECTED]
> > with "unsubscribe freebsd-net" in the body of the message
>
> To Unsubscribe: send mail to [EMAIL PROTECTED]
> with "unsubscribe freebsd-net" in the body of the message
msg08189/pgp00000.pgp
Description: PGP signature
