problem: MAC in via internal interface
Jara
hugle at vkt.lt
Fri Aug 12 07:09:26 GMT 2005
hi,
I think it is because after 2-3 mins you start blocking ARP queries
which results in smth like that machine doesn't know others machine HW
address, she tries to get this address again and no answer
Jarek
---------------------------------------
> Hi!
> I want to permit only traffic from my network class throught internal
> interface. So i put in ipfw rules this rule to see what traffic is:
> $cmd add 51 count log logamount 0 all from not $local_net to any in via $lif
> I study my logs and i find this:
> Aug 12 09:58:14 freebsd kernel: ipfw: 51 Count UDP 0.0.0.0:68 255.255.255.255:67 in via fxp0
> Aug 12 09:58:14 freebsd kernel: ipfw: 51 Count UDP 0.0.0.0:68 255.255.255.255:67 in via fxp0
> Aug 12 09:58:18 freebsd kernel: ipfw: 51 Count MAC in via fxp0
> When i deny this traffic, network freeze after 3-10 min. I think is
> because, is blocked traffic inidcate by "MAC in via fxp0".
> What kind of traffic is this? I can't block ilegal traffic to this
> reason.
> _______________________________________________
> freebsd-ipfw at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw
> To unsubscribe, send any mail to
> "freebsd-ipfw-unsubscribe at freebsd.org"
More information about the freebsd-ipfw
mailing list