IPFW Questions.

Grant Peel gpeel at thenetnow.com
Mon Aug 20 06:07:24 PDT 2007

Hi all,

I was wondering what the concensus is on using dynamic rules in IPFW. Every once in a while, I suppose there is a DoS attaclk that causes me to see hundreds of:

+ipfw: install_state: Too many dynamic rules

in my security log.

I am sure i read somewhere that many people are skipping the dynamic rules and just relying on the line by line rules.

You thoughts please.

Any while your up, does anyone really know what this means?

ipfw: pullup failed

I dont see that often maybe 1 or 2 times a month.


More information about the freebsd-questions mailing list