Hi,
Just a wandering question whilst I was looking into some trouble I could
not explain.
I noticed some access to a system which I could not really explain,
until I noticed that `net.inet.ip.fw.one_pass=0` was not set in the
/etc/sysctl file.
So things would only go thru the ipfw list once
On 1-8-2016 07:22, Julian Elischer wrote:
> On 30/07/2016 10:17 PM, Dr. Rolf Jansen wrote:
>>
>> I am still a little bit amazed how ipfw come to accept incorrect CIDR
>> ranges and arbitrarily moves the start/end addresses in order to
>> achieve CIDR conformity, and that without any further notice,
On 5-10-2014 4:18, John W. O'Brien wrote:
> On 10/4/14 8:35 AM, Alexander V. Chernikov wrote:
>> Hi,
>>
>> I'm going to merge projects/ipfw branch to HEAD in the middle of next week.
Alexander,
Nice job..
The change list looks impressive.
Really looking forward to start working with the new tabl
On 14-9-2014 13:44, Ian Smith wrote:
> On Sun, 14 Sep 2014 12:36:43 +0200, Willem Jan Withagen wrote:
> > On 13-9-2014 21:51, Freddie Cash wrote:
> > > You can replicate it using 3 rules, loaded into two sets:
> > >
> > > ipfw set disable 1
> > >
On 13-9-2014 21:51, Freddie Cash wrote:
> You can replicate it using 3 rules, loaded into two sets:
>
> ipfw set disable 1
> ipfw add allow ip from any to any
> ipfw add 65524 allow ip from any to any
> ipfw add allow ip from any to any
> ipfw set swap 1 0
>
> Run that two or 3 times. Every rule
On 14-8-2014 17:20, Alexander V. Chernikov wrote:
>> I've found the notation ipnr:something rather frustrating when using
>> ipv6 addresses. Sort of like typing a ipv6 address in a browser, the
>> last :xx is always interpreted as portnumber, UNLESS you wrap it in []'s.
>> compare
>> 2001:4cb8:
On 14-8-2014 17:53, Lee Dilkie wrote:
>
> On 8/14/2014 11:27 AM, Willem Jan Withagen wrote:
>> On 14-8-2014 14:46, Lee Dilkie wrote:
>>> On 8/14/2014 08:08, Willem Jan Withagen wrote:
>>>> I've found the notation ipnr:something rather frustrating when u
On 14-8-2014 17:20, Alexander V. Chernikov wrote:
> On 14.08.2014 16:08, Willem Jan Withagen wrote:
>> On 2014-08-14 13:15, Luigi Rizzo wrote:
>>> On Thu, Aug 14, 2014 at 12:57 PM, Alexander V. Chernikov <
>>> melif...@yandex-team.ru> wrote:
>>>
>
On 14-8-2014 14:46, Lee Dilkie wrote:
>
> On 8/14/2014 08:08, Willem Jan Withagen wrote:
>> I've found the notation ipnr:something rather frustrating when using
>> ipv6 addresses. Sort of like typing a ipv6 address in a browser, the
>> last :xx is always interpreted a
On 2014-08-14 13:15, Luigi Rizzo wrote:
On Thu, Aug 14, 2014 at 12:57 PM, Alexander V. Chernikov <
melif...@yandex-team.ru> wrote:
On 14.08.2014 14:44, Luigi Rizzo wrote:
On Thu, Aug 14, 2014 at 11:57 AM, Alexander V. Chernikov <
melif...@yandex-team.ru> wrote:
On 14.08.2014 13:23, L
On 20-4-2011 14:40, Lev Serebryakov wrote:
> The following reply was made to PR bin/104921; it has been noted by GNATS.
>
> From: Lev Serebryakov
> To: bug-follo...@freebsd.org, seh-10l...@mail.quadrizen.com
> Cc: freebsd-ipfw@FreeBSD.org, freebsd-...@freebsd.org
> Subject: Re: bin/104921: [patch
Luigi Rizzo wrote:
On Sun, Jan 17, 2010 at 12:04:43PM +0100, Luigi Rizzo wrote:
On Sun, Jan 17, 2010 at 05:42:58PM +0900, Hajimu UMEMOTO wrote:
Hi,
On Sun, 10 Jan 2010 19:52:32 +0100
Luigi Rizzo said:
While we are at it, might I suggest one more "nice" thing...
For several of my projects
Lars Eggert wrote:
Well, one pretty simple (and not always correct) fix would be to assume
that if an address has more than 1 colon, it's IPv6.
The correct fix is to generate a small flex parser.
Which will require to spec an real grammar for the tokens.
In itself of course a "good thing(tm)"
Lars Eggert wrote:
The following reply was made to PR bin/117214; it has been noted by GNATS.
From: Lars Eggert
To: bug-follo...@freebsd.org, fab...@wenks.ch
Cc:
Subject: Re: bin/117214: ipfw(8) fwd with IPv6 treats input as IPv4
Date: Sat, 22 Aug 2009 02:27:44 +0300
I still see this on 7.
Raffaele De Lorenzo wrote:
Hi all,
I attached a patch that solve this problem. I will send a PR as soon as
possible.
Instructions:
Patch the follow files:
/usr/src/sbin/ipfw/ipfw2.c (patch is ipfw2.c.diff)
/usr/src/sbin/ipfw/ipfw2.h (patch is ipfw2.h.diff)
/usr/src/sbin/ipfw/ipv6.c (patch is
Reply below, and an also reorganised the yours...
raffaele.delore...@libero.it wrote:
Hi,
Running 7.2 I tried to insert
this into my IPFW rules
# ipfw add allow udp from any to 2001:xxx:3::
113,2001::3::116 \
dst-port 10001-10100 keep-state
ipfw: bad netmask
``:3::113''
a
16 matches
Mail list logo