Date: Fri, 10 Mar 2000 01:46:34 -0500 (EST) From: Mike Heffner <mheffner@mailandnews.com> To: freebsd-ipfw@freebsd.org Subject: ipfw doesn't match when src == dest Message-ID: <XFMail.20000310014634.mheffner@mailandnews.com>
next in thread | raw e-mail | index | archive | help
Hello, When I recently redid my firewall, I wanted to block a strange packet from my cablemodem, Deny P:2 192.168.100.1 192.168.100.1 in via ed1 as you can see, the source equals the destination. When I installed the ipfw rule below, it wouldn't match the packet: 00146 0 0 deny log ip from 192.168.100.1 to 192.168.100.1 via ed1 But when I change the rule to this: 00146 0 0 deny log ip from 192.168.100.1 to any via ed1 it'll match the packet and deny it correctly. Has anyone else noticed this, or have I got this confused somehow? I'm planning to look into it a little further, but just wondered if anyone had any ideas offhand. Later, /**************************************** * Mike Heffner <spock@techfour.net> * * Fredericksburg, VA -- ICQ# 882073 * * Sent at: 10-Mar-2000 -- 01:37:17 EST * * http://my.ispchannel.com/~mheffner * ****************************************/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?XFMail.20000310014634.mheffner>