def/(ip-option)

Tue, 09 Feb 2010 05:34:57 -0800 

Hi
I've setup a new firewall and I'm getting the following line in PF's log ... 


Jan 31 08:14:34 XXXXX OPF: Jan 31 15:17:40.495167 rule def/(ip-option) 
pass in on em3: 172.16.1.59 > 224.0.0.22: igmp-2 [v2] (DF) [tos 0xc0] 
[ttl 1]



What does def/(ip-option) mean and why does it get passed? I don't have 
any rules passing multicast traffic and in sysctl(8)  multicast 
forwarding is disabled:

# sysctl -a | grep forw
net.inet.ip.forwarding=1
net.inet.ip.mforwarding=0
net.inet6.ip6.forwarding=0
net.inet6.ip6.mforwarding=0
#



--
TIA
Paolo























					Reply via email to