[Bug 219815] ipfw stops working when more than one tables is used
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Tue Jun 6 21:22:19 UTC 2017
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219815
--- Comment #3 from Andrey V. Elsukov <ae at FreeBSD.org> ---
(In reply to ecsd from comment #2)
> I am glad to hear there are not volume restrictions, but I fail to see what
> logging has to do with rules failing to fire when traffic that would trigger
> them is known for a certainty to have entered the machine. I could say "log
> deny" but if the rule never fires, then - ? And this issue asks what is
> wrong that adding as much as a 2nd table to the mix causes the firewall to
> start failing past the point (sequence number) where the 2nd table reference
> is made.
You can add `log` action to the `allow` rules. I suspect your first `allow`
rules do match the packets that you want to be matched by `deny` rules.
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-bugs
mailing list