Wojciech Puchar <[EMAIL PROTECTED]> writes: > can it be solved? > > with first rule in my firewall config i have > > flush > add 2 deny ip from any to any not antispoof > > > works fine - as long as no IPv6 link-local communication is needed - > route6d is an example. > > changing it to > > add 2 deny ip4 from any to any not antispoof > > > is using link-local addresses spoofing?!
I don't have time to come up with a fix at the moment, but that does look like a bug to me. I'm not sure I can see any way around having special-case code in the ip_fw2 code for link-local addresses... _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"