IPFW2 tables

[NetAdmin]

On Tue, 2004-11-23 at 21:32 +0000, Thomas Wolf wrote:
> NetAdmin <daemon at foxchat.net> schrieb:
> 
> > 	I just found out about tables.  I've been trying to google for correct
> > syntax but as yet have not been able to find anything.  Can anyone
> > direct me to a good howto for setting up IPFW tables?  Using 5.3
> > Release.
> > 
> > did the following;
> > 
> > # ipfw table 1 add 0.0.0.0/8
> > 
> > shows
> > # ipfw table 1 list
> > 0.0.0.0/8 0
> > 
> > Set rule as; *Note: found there was a problem using table (1)
> > {fwcmd} add 300 deny ip from table '1' to me
> 
> The correct syntax that should work under any shell should be
> {fwcmd} add 300 deny ip from table\(1\) to me
> or
> {fwcmd} add 300 deny ip from "table(1)" to me
> 
> 
> > The odd part is, I get this with the 'ipfw show' command
> > # ipfw show
> > 00300 deny ip from 216.65.30.238 1 to me
> 
> Hm. is 'table' a hostname in your network? When i tried
> your syntax, i got:
> tele# ipfw add 1 count all from table '1' to me
> ipfw: hostname ``table'' unknown
> tele#
> 
> Thomas

Great! That worked.  Thanks.  Now, is there a page I can refer to for
other commands and syntax like adding multiple ports?  I tried the
following and assume it works.

${fwcmd} add 301 deny all from "table(2)" to me 20-25,110,113,143

# ipfw show
00301       0          0 	deny ip from table(2) to me dst-port
20-25,110,113,143

Mark
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: This is a digitally signed message part
Url : http://lists.freebsd.org/pipermail/freebsd-ipfw/attachments/20041123/e7af723c/attachment.bin