Does anyone know the TCP reset in ipfilter on Solaris 10? The rule set up below blocks TCP packets on the specified interface but does not appear to produce the desired TCP reset packets. I used snoop to verify
# ipf -Fa # echo "block return-rst in log quick on bge4001 proto tcp from any to any" | ipf -f - # # # ipfstat -io empty list for ipfilter(out) block return-rst in log quick on bge4001 proto tcp from any to any My configuration: # uname -a ; /usr/sbin/ipf -V SunOS node30mgmt 5.10 Generic_127112-06 i86pc i386 i86pc ipf: IP Filter: v4.1.9 (592) Kernel: IP Filter: v4.1.9 Running: yes Log Flags: 0 = none set Default: pass all, Logging: available Active list: 1 Feature mask: 0x107 I appreciate any help any of you can provide. -- Andrés M. Pérez Staff Engineer Advanced Technology Group *Sun Microsystems, Inc.* 1 Network Drive, MS UBUR02-306 Burlington, MA 01803 *USA* Phone x22140/+1 781 442 2140 Email [EMAIL PROTECTED] _______________________________________________ networking-discuss mailing list [email protected]
