[patch] matching IPv4 broadcast packets in ipfw
Maxim Ignatenko
gelraen.ua at gmail.com
Mon Apr 6 10:54:49 PDT 2009
Strange, but packet
TCP 88.222.53.231:55882 192.168.100.2:44943 out via gif0
matched the rule
allow log ip from any to any broadcast
ifconfig gif0
gif0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> metric 0 mtu 1280
tunnel inet x.x.x.x --> x.x.x.x
inet 192.168.100.1 --> 192.168.100.2 netmask 0xfffffffc
I thougth it should not be matched because gif0 has not set
IFF_BROADCAST in if_flags
More information about the freebsd-current
mailing list