puzzling "ipfw show" output
Trond Endrestøl
Trond.Endrestol at fagskolen.gjovik.no
Mon Dec 12 00:39:48 PST 2005
On Mon, 12 Dec 2005 19:09+1100, Graham Menhennitt wrote:
> The only explanation I have is that the packets arrived between the
> time when the machine started accepting incoming packets and when
> the rules were loaded in /etc/rc.d/ipfw.
You just explained this yourself.
One solution to this small problem could be to change part of the boot
sequence into this:
a. Create VLAN interfaces etc if configured, assign IP addresses to
each configured interface, but do not UP them.
b. Load the firewall rules, and optionally turn on forwarding.
c. Set all configured interfaces to UP.
One last question:
Why do you need rule 65530 when the built-in rule 65535 does the same
job?
--
----------------------------------------------------------------------
Trond Endrestøl | trond at fagskolen.gjovik.no
Patron of The Art of Computer Programming| FreeBSD 4.8-S & Pine 4.55
More information about the freebsd-stable
mailing list