Trouble with IPFW or TCP?
Ivan Voras
ivoras at freebsd.org
Fri Apr 4 09:09:29 UTC 2008
Julian Elischer wrote:
> Ivan Voras wrote:
>> In which case would an ipfw ruleset like this:
>>
>> 00100 114872026 40487887607 allow ip from any to any via lo0
>> 00200 0 0 deny ip from any to 127.0.0.0/8
>> 00300 0 0 deny ip from 127.0.0.0/8 to any
>> 00600 1585 112576 deny ip from table(0) to me
> ipfw add 700 check-state
Predictably, adding check-state doesn't do anything new. Additionally,
the counters of check-state are always 0 (I don't know if this is good
or not).
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: OpenPGP digital signature
Url : http://lists.freebsd.org/pipermail/freebsd-net/attachments/20080404/fa9a10e6/signature.pgp
More information about the freebsd-net
mailing list