[Bug 238796] ipfilter: failure to detect the same rules when arguments ordered differently

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=238796 Cy Schubert changed: What|Removed |Added Resolution|--- |FIXED Status|In

[Bug 238796] ipfilter: failure to detect the same rules when arguments ordered differently

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=238796 --- Comment #41 from commit-h...@freebsd.org --- A commit references this bug: Author: cy Date: Sun Aug 25 04:56:35 UTC 2019 New revision: 351470 URL: https://svnweb.freebsd.org/changeset/base/351470 Log: MFC r350880: r272552 applied

Re: Trying to understand why the ipfw rules don't work on lo0

25.08.2019 5:03, Yuri wrote: > I'm forwarding TCP connections coming to me on a particular port to the other > interface. > It works fine when the connection originates from the outside host. > It doesn't work when the connection originates from my own host. > The description is here: >

Trying to understand why the ipfw rules don't work on lo0

I'm forwarding TCP connections coming to me on a particular port to the other interface. It works fine when the connection originates from the outside host. It doesn't work when the connection originates from my own host. The description is here:

Re: finding optimal ipfw strategy

25.08.2019 3:44, Victor Gamov wrote: > Eugene > > Many thanks for your reply! > > I need to read more about tablearg and then modify my current production > rules step by step. Also, rules like "ipfw add 25013 deny udp from any to any" should be simplified to "ipfw add 25013 deny ip from any

Re: finding optimal ipfw strategy

Eugene Many thanks for your reply! I need to read more about tablearg and then modify my current production rules step by step. Thank you again! On 24/08/2019 23:11, Eugene Grosbein wrote: 25.08.2019 2:34, Eugene Grosbein wrote: Also, use table arguments and not only table values, do

Re: finding optimal ipfw strategy

25.08.2019 2:34, Eugene Grosbein wrote: > Also, use table arguments and not only table values, do not ignore their > existence: > > ipfw table $Mcast1_iface_out add vlan20 $mcast11 > ipfw table $Mcast1_iface_out add vlan20 $mcast12 > ipfw table $Mcast1_iface_out add vlan20 $mcast13 > ipfw add

Re: finding optimal ipfw strategy

25.08.2019 1:13, Victor Gamov wrote: > I have nonstandard network task for my FreeBSD box: > many VLANs bridged together via bridge interface and specific multicast > traffic must be send > from one VLAN to many (but not all) other VLANs. It is quite standard filtering bridge :-) > I use ipfw

finding optimal ipfw strategy

Hi All I have nonstandard network task for my FreeBSD box: many VLANs bridged together via bridge interface and specific multicast traffic must be send from one VLAN to many (but not all) other VLANs. I use ipfw to block traffic on unwanted outgoing interfaces. And my answer: which ipfw

[Bug 239982] IPv6 network stack panics since upgrading to 11.3

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=239982 Mark Linimon changed: What|Removed |Added Keywords||regression

[Bug 240023] netmap lb pointer out of bounds on ixgbe

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=240023 Mark Linimon changed: What|Removed |Added Keywords||IntelNetworking