ipfw: ouch!, skip past end of rules, denying packet
Fratiman Vladut
vladone at spaingsm.com
Wed Nov 22 19:20:50 UTC 2006
Hello Ja,
Monday, November 20, 2006, 1:14:17 PM, you wrote:
> Hello,
> after upgrade from FreeBSD 4.11 to 6.1-RELEASE-p10 we are getting lots of $SUBJ messages in log.
> It is triggered by "ipfw -f flush" command when firewall is reloaded.
> Other info:
> HZ=1000
> dummynet pipes (without them no $SUBJ)
> net.inet.ip.fw.one_pass: 0 (need for traffic counting after pipe)
> no skipto rule
> Any solution, please?
> _______________________________________________
> freebsd-ipfw at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw
> To unsubscribe, send any mail to
> "freebsd-ipfw-unsubscribe at freebsd.org"
This message is given by packets that exist in pipe queue's after
flush ipfw rules.
--
Best regards,
Fratiman mailto:vladone at spaingsm.com
More information about the freebsd-ipfw
mailing list