ipfw: unrecognised option [-1] tcp
scuba at centroin.com.br
scuba at centroin.com.br
Mon Oct 3 14:08:49 PDT 2005
Hi all,
I'm a bit confused here, please give me some light.
My problem is that after the rule 190 (see them bellow) I get this
error message:
ipfw: unrecognised option [-1] tcp
But it´s not only after 190, if I remove it the problem keeps.
Here is the begining of my ipfw rules file
#!bin/sh
/sbin/ipfw -q -f flush
cmd="/sbin/ipfw -q add"
pif="fxp0"
$cmd 00010 allow all from localhost to localhost via lo0
$cmd 00015 check-state
$cmd 00100 deny all from 192.168.0.0/16 to any in via $pif #RFC 1918 private IP
$cmd 00110 deny all from 172.16.0.0/12 to any in via $pif #RFC 1918 private IP
$cmd 00120 deny all from 10.0.0.0/8 to any in via $pif #RFC 1918 private IP
$cmd 00130 deny all from 127.0.0.0/8 to any in via $pif #loopback
$cmd 00140 deny all from 0.0.0.0/8 to any in via $pif #loopback
$cmd 00150 deny all from 169.254.0.0/16 to any in via $pif #DHCP auto-config
$cmd 00160 deny all from 192.0.2.0/24 to any in via $pif #reserved for docs
$cmd 00170 deny all from 204.152.64.0/23 to any in via $pif #Sun cluster interconnect
$cmd 00180 deny all from 224.0.0.0/3 to any in via $pif #Class D & E multicast
$cmd 00190 deny all from any to any frag in via $pif
$cmd 00200 deny tcp from any to any established in via $pif
$cmd 00210 allow tcp from me to any out via $pif setup keep-state uid root
- Marcelo
More information about the freebsd-ipfw
mailing list