tcpdump on ipfw0 and ipv6

Marcin Wisnicki mwisnicki+freebsd at gmail.com
Sat Jun 19 16:47:15 UTC 2010


I'm trying to log ipv6 traffic with following rule:

 ipfw add 10 set 6 count log ip6 from any to any

with `ipfw enable verbose` it is correctly logged to /var/log/security:

> Jun 19 18:40:16 ghost kernel: ipfw: 10 Count TCP [...]:56233 [...]:22 in via vr0

however when I do `ipfw disable verbose` and `tpdump -ni ipfw0`
all I can see is:

# tcpdump -ni ipfw0
tcpdump: WARNING: ipfw0: no IPv4 address assigned
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on ipfw0, link-type EN10MB (Ethernet), capture size 96 bytes
18:41:43.563579 IP6 , wrong link-layer encapsulationbad-hlen 0
18:41:43.563598 IP6 , wrong link-layer encapsulationbad-hlen 0
18:41:43.563747 IP6 , wrong link-layer encapsulationbad-hlen 0


Am I doing something wrong or is logging to ipfw0 broken for ip6 ?

uname:
 FreeBSD 8.1-PRERELEASE #3: Sun Jun  6 21:14:57 CEST 2010
from sources checked out that day



More information about the freebsd-ipfw mailing list