FreeBSD11 ipfw sets.
damian at damianek.be
damian at damianek.be
Tue Feb 13 11:15:23 UTC 2018
Hello
I have strange behavior using ipfw set's on FreeBSD11.
Working fine on 10.3-STABLE amd64 amd64 1003514 - customkernel with
options IPFIREWALL_VERBOSE
options IPFIREWALL_DEFAULT_TO_ACCEPT
options IPFIREWALL
:~# ipfw add 9999 count tcp from any to any 22
09999 count tcp from any to any dst-port 22
:~# ipfw show 9999
09999 42 3184 count tcp from any to any dst-port 22
:~# ipfw set move rule 9999 to 2
:~# ipfw -S set 2 show
# DISABLED 09999 93 7036 set 2 count tcp from any to any dst-port 22
:~# ipfw set 2 delete 9999
Now same on 11.1-RELEASE-p4 amd64 amd64 1101001 - generic kernel
with ipfw_load="YES" in /boot/loader.conf
:~ # ipfw add 9999 count tcp from any to any 22
09999 count tcp from any to any dst-port 22
:~ # ipfw show 9999
09999 19 1720 count tcp from any to any dst-port 22
:~ # ipfw set move rule 9999 to 2
:~ # ipfw -S set 2 show
:~ # ipfw set 2 delete 9999
ipfw: rule 9999 not found
~ # ipfw delete 9999
I'm doing some wrong, or bug?
-- dsk
damian at damianek.be
More information about the freebsd-ipfw
mailing list