IPFW and SCTP port number
Luigi Rizzo
rizzo at iet.unipi.it
Thu Sep 10 06:58:49 UTC 2009
On Wed, Sep 09, 2009 at 11:17:50PM -0700, mkarjal wrote:
>
> Hi,
>
> I'm trying to catch SCTP packets with IPFW by SCTP port numbers, should it
> be working or not?
> Or is there some different syntax for this?
>
> "ipfw add count sctp from any to any" works, counts all SCTP packets.
>
> "ipfw add count sctp from any 49606 to any" does not work. Counters show
> zero reading.
>
> I have tried adding IP address, with different port ranges and combinations.
> I have tested this with 7.2-RELEASE and 8.0-BETA3.
i think at the moment ipfw is not parsing sctp headers so it
does not fetch port numbers.
cheers
luigi
More information about the freebsd-ipfw
mailing list