Darren,
i'm sorry to tell you that the problem still persists.
# ipf -V ipf: IP Filter: v4.1next (388) Kernel: IP Filter: v4.1next Running: yes Log Flags: 0 = none set Default: pass all, Logging: available Active list: 0 Feature mask: 0xe
# echo "block in quick from any to any port = nosuchport" | ipf -Fa -f -
# ipfstat -i block in quick from any to any port = 65535
Actually i would have expected this since ntohs() does return an unsigned short value (u_int16_t on BSD) which is casted to an int ($$ = ntohs(getport(frc, $1)). Therefore $$ holds 0x0000FFFF if getport returns -1, which won't be equal to 0xFFFFFFFF in the compare.
Ok, i stop being a smart ass now ;-)
Btw, the "port > 1024" problem is already fixed, right?
-- Attila
Attila FÃlÃp wrote:
Darren Reed wrote:
In some email I received from Attila Fïlïp, sie wrote: [ Charset ISO-8859-1 unsupported, converting... ]
Darren,
i had a quick look. It seems that one patch was somehow omitted. You mentioned that you had a similar patch in your tree, but somehow it didn't make it into the new version.
Does the problem persist ?
I hope I've fixed it with support from a change elsewhere.
Oh, ok. Sorry
Well i haven't had the time to install it yet. Maybe i'll find some time tomorrow. I'll post the results.
-- Attila
