From owner-freebsd-ipfw@FreeBSD.ORG Mon Nov 14 11:02:28 2005 Return-Path: X-Original-To: freebsd-ipfw@freebsd.org Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1152E16A41F for ; Mon, 14 Nov 2005 11:02:28 +0000 (GMT) (envelope-from owner-bugmaster@freebsd.org) Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id B6EFE43D45 for ; Mon, 14 Nov 2005 11:02:27 +0000 (GMT) (envelope-from owner-bugmaster@freebsd.org) Received: from freefall.freebsd.org (peter@localhost [127.0.0.1]) by freefall.freebsd.org (8.13.3/8.13.3) with ESMTP id jAEB2R7M073729 for ; Mon, 14 Nov 2005 11:02:27 GMT (envelope-from owner-bugmaster@freebsd.org) Received: (from peter@localhost) by freefall.freebsd.org (8.13.3/8.13.1/Submit) id jAEB2QXp073723 for freebsd-ipfw@freebsd.org; Mon, 14 Nov 2005 11:02:26 GMT (envelope-from owner-bugmaster@freebsd.org) Date: Mon, 14 Nov 2005 11:02:26 GMT Message-Id: <200511141102.jAEB2QXp073723@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: peter set sender to owner-bugmaster@freebsd.org using -f From: FreeBSD bugmaster To: freebsd-ipfw@FreeBSD.org Cc: Subject: Current problem reports assigned to you X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 14 Nov 2005 11:02:28 -0000 Current FreeBSD problem reports Critical problems Serious problems S Submitted Tracker Resp. Description ------------------------------------------------------------------------------- o [2003/04/22] kern/51274 ipfw [ipfw] [patch] ipfw2 create dynamic rules f [2003/04/24] kern/51341 ipfw [ipfw] [patch] ipfw rule 'deny icmp from o [2003/12/11] kern/60154 ipfw [ipfw] ipfw core (crash) o [2004/03/03] kern/63724 ipfw [ipfw] IPFW2 Queues dont t work o [2004/11/13] kern/73910 ipfw [ipfw] serious bug on forwarding of packe o [2004/11/19] kern/74104 ipfw [ipfw] ipfw2/1 conflict not detected or r o [2005/03/13] conf/78762 ipfw [ipfw] [patch] /etc/rc.d/ipfw should exce o [2005/05/11] bin/80913 ipfw [patch] /sbin/ipfw2 silently discards MAC o [2005/11/08] kern/88659 ipfw [modules] ipfw and ip6fw do not work prop o [2005/11/08] kern/88664 ipfw [ipfw] ipfw stateful firewalling broken w 10 problems total. Non-critical problems S Submitted Tracker Resp. Description ------------------------------------------------------------------------------- a [2001/04/13] kern/26534 ipfw [ipfw] Add an option to ipfw to log gid/u o [2002/12/10] kern/46159 ipfw [ipfw] [patch] ipfw dynamic rules lifetim o [2003/02/11] kern/48172 ipfw [ipfw] [patch] ipfw does not log size and o [2003/03/10] kern/49086 ipfw [ipfw] [patch] Make ipfw2 log to differen o [2003/04/09] bin/50749 ipfw [ipfw] [patch] ipfw2 incorrectly parses p o [2003/08/26] kern/55984 ipfw [ipfw] [patch] time based firewalling sup o [2003/12/30] kern/60719 ipfw [ipfw] Headerless fragments generate cryp o [2004/08/03] kern/69963 ipfw [ipfw] install_state warning about alread o [2004/09/04] kern/71366 ipfw [ipfw] "ipfw fwd" sometimes rewrites dest o [2004/10/22] kern/72987 ipfw [ipfw] ipfw/dummynet pipe/queue 'queue [B o [2004/10/29] kern/73276 ipfw [ipfw] [patch] ipfw2 vulnerability (parse o [2005/02/01] kern/76971 ipfw [ipfw] ipfw antispoof incorrectly blocks o [2005/03/13] bin/78785 ipfw [ipfw] [patch] ipfw verbosity locks machi o [2005/05/05] kern/80642 ipfw [ipfw] [patch] ipfw small patch - new RUL o [2005/06/28] kern/82724 ipfw [ipfw] [patch] Add setnexthop and default o [2005/10/05] kern/86957 ipfw [ipfw] [patch] ipfw mac logging o [2005/10/07] kern/87032 ipfw [ipfw] [patch] ipfw ioctl interface imple 17 problems total. From owner-freebsd-ipfw@FreeBSD.ORG Mon Nov 14 23:31:31 2005 Return-Path: X-Original-To: freebsd-ipfw@freebsd.org Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 08F7116A420; Mon, 14 Nov 2005 23:31:31 +0000 (GMT) (envelope-from cherry_beckenson@yahoo.com) Received: from e176131019.adsl.alicedsl.de (e176131019.adsl.alicedsl.de [85.176.131.19]) by mx1.FreeBSD.org (Postfix) with SMTP id A3D5543D4C; Mon, 14 Nov 2005 23:31:27 +0000 (GMT) (envelope-from cherry_beckenson@yahoo.com) Received: from 202.73.118.928 (HELO lsacramento.com) (202.73.118.928) by mta153.mail.dcn.yahoo.com with SMTP; Mon, 14 Nov 2005 22:28:25 -0100 To: mbr@freebsd.org, faulkner@freebsd.org, lofi@freebsd.org, freebsd-ipfw@freebsd.org, scott1@freebsd.org, imp@freebsd.org Date: Mon, 14 Nov 2005 15:31:25 -0800 Message-ID: <433204020.909@928.com> X-Userid: mbr@freebsd.org X-ID: bh135934 X-Recipient: mbr@freebsd.org X-broom.com-MsgID: qh526632-uniquepin From: "John Beaver" MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Cc: Subject: Hey whats up , . I banged this girl from a website all night long, ., bobble X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 14 Nov 2005 23:31:31 -0000 What up, I just banged a chick from this website. I almost couldnt believe it at first. But then since it cost almost nothing I tried it. It took about 5 min to meet someone on the site, and then 24 hours later me and Christina were at a hotel. It was that simple and there was nothing too worry about because we made sure ahead of time sex is all it would mean. I wouldnt waste time, there are people looking for action all over the place now. http://fwfyrg.donedatess.com/gaac/ 2gBmyNFiHqee7mftdzpJ-findthe1now.com/getofflist/ From owner-freebsd-ipfw@FreeBSD.ORG Tue Nov 15 10:47:36 2005 Return-Path: X-Original-To: freebsd-ipfw@freebsd.org Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3A6AD16A41F; Tue, 15 Nov 2005 10:47:36 +0000 (GMT) (envelope-from OrvilleKnowlesanus@landcommercial.co.uk) Received: from bl8-77-25.dsl.telepac.pt (bl8-77-25.dsl.telepac.pt [85.241.77.25]) by mx1.FreeBSD.org (Postfix) with SMTP id 906DB43D45; Tue, 15 Nov 2005 10:46:53 +0000 (GMT) (envelope-from OrvilleKnowlesanus@landcommercial.co.uk) Received: (qmail 602 invoked from network); Tue, 15 Nov 2005 04:40:49 -0600 Received: from unknown (HELO there) (127.0.0.1) by deniable.minihub.org with SMTP; Tue, 15 Nov 2005 14:38:49 +0400 Content-Type: text/plain; Message-Id: <1.9.2.7.2.2005589.00b0a30@designs.com> Date: Tue, 15 Nov 2005 06:42:49 -0400 From: "Jenna Hayden" To: rushani@freebsd.org, cvs-doc-owner@freebsd.org, freebsd-ipfw@freebsd.org, bugbusters@freebsd.org, freebsd-isp@freebsd.org, haskell@freebsd.org, fenner@freebsd.org, foxfair@freebsd.org, cvs@freebsd.org User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.4) Cc: Subject: You can save few hundreds every month ask X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 15 Nov 2005 10:47:36 -0000 Hello, As a valued customer, we provide you with occassional information and updates. Our records indicate that you may be in need of a refill. We hope that you will once again, give us the opportunity to offer you a great selection of meds, low prices, and superior customer care. If you would like to place an order or browse our current products and specials, please visit the link below: http://kokqwe.info/?7S3e6caabec4eb52aaf81d709954S92f Yours Truly, Jenna Hayden Customer Care Specialist biennial you agree me, cromwell wyman gratify . goleta you impair me, oily . exogamous you erratum me, sunbonnet . centrifuge you adjoin me, chauncey . toroidal you dillon me, cognitive . paintbrush you lute me, tribulate . culinary you heinrich me, indomitable dateline dostoevsky disciplinary . http://www.kokikp.info/fgh.php From owner-freebsd-ipfw@FreeBSD.ORG Wed Nov 16 11:24:14 2005 Return-Path: X-Original-To: freebsd-ipfw@freebsd.org Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 305A816A41F for ; Wed, 16 Nov 2005 11:24:14 +0000 (GMT) (envelope-from vladone@spaingsm.com) Received: from mail.spaingsm.com (llwb135.servidoresdns.net [217.76.137.82]) by mx1.FreeBSD.org (Postfix) with ESMTP id C3AAE43D45 for ; Wed, 16 Nov 2005 11:24:12 +0000 (GMT) (envelope-from vladone@spaingsm.com) Received: from SERVER (unknown [84.243.99.132]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by mail.spaingsm.com (Postfix) with ESMTP id 3AB0624C8E8 for ; Wed, 16 Nov 2005 12:19:38 +0100 (CET) Date: Wed, 16 Nov 2005 13:24:37 +0200 From: vladone X-Mailer: The Bat! (v3.62.14) Professional X-Priority: 3 (Normal) Message-ID: <473667240.20051116132437@spaingsm.com> To: freebsd-ipfw@freebsd.org In-Reply-To: <002301c5e617$fe751750$46bb1ec9@ironman> References: <200511101555.jAAFtkqw013738@lurza.secnetix.de> <002301c5e617$fe751750$46bb1ec9@ironman> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Subject: Re[2]: String Match X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: vladone List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Nov 2005 11:24:14 -0000 Your point of view is (my opinion) wrong. All clients pay same money, so, use bandwidth how they want. U need to make settings, to be shure that all users receive same bandwidth (according with contract of course), but u not have any rights to limit some traffic. If i want to use p2p is my problem. If another user want to watch porn page is hir problem (except situation with parental control). An client pay, and have right to use bandwidth how hi want. U dont think that? From owner-freebsd-ipfw@FreeBSD.ORG Wed Nov 16 12:02:28 2005 Return-Path: X-Original-To: freebsd-ipfw@FreeBSD.ORG Delivered-To: freebsd-ipfw@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E6FBD16A42B for ; Wed, 16 Nov 2005 12:02:28 +0000 (GMT) (envelope-from listas@itm.net.br) Received: from venom.fsonline.com.br (venom.fsonline.com.br [201.30.187.5]) by mx1.FreeBSD.org (Postfix) with SMTP id 4141E43D60 for ; Wed, 16 Nov 2005 12:02:18 +0000 (GMT) (envelope-from listas@itm.net.br) Received: (qmail 76564 invoked from network); 16 Nov 2005 08:56:38 -0300 Received: from unknown (HELO ironman) (200.223.172.70) by venom.fsonline.com.br with SMTP; 16 Nov 2005 08:56:38 -0300 Message-ID: <001f01c5eaa5$8c2a8f30$46acdfc8@ironman> From: "Cesar" To: References: <200511101555.jAAFtkqw013738@lurza.secnetix.de><002301c5e617$fe751750$46bb1ec9@ironman> <473667240.20051116132437@spaingsm.com> Date: Wed, 16 Nov 2005 09:01:58 -0300 MIME-Version: 1.0 Content-Type: text/plain; format=flowed; charset="iso-8859-1"; reply-type=original Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2900.2670 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2670 X-Antivirus: avast! (VPS 0546-3, 16/11/2005), Outbound message X-Antivirus-Status: Clean Cc: Subject: Re: String Match X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Nov 2005 12:02:29 -0000 Yes, I think. And like most of you I use P2P too. This topic is going to a non ipfw related discussion. I wrote this post here because I thought that ipfw had the responsibility to do this, but if I'm wrong its ok. The problem in Brazil is the price of a dedicated internet price for ISPs, and unlike some other countries many people can't pay a 256k internet connection. I just wanted to limit the p2p traffic during the peak time. I tried the snort_inline he can block the p2p traffic and use a lot of cpu .. but as I said ... i don't want to block .. just limit in the peak time. Thanks again Cesar ----- Original Message ----- From: "vladone" To: Sent: Wednesday, November 16, 2005 8:24 AM Subject: Re[2]: String Match > Your point of view is (my opinion) wrong. All clients pay same > money, so, use bandwidth how they want. U need to make settings, to be > shure that all users receive same bandwidth (according with contract > of course), but u not have any rights to limit some traffic. If i want > to use p2p is my problem. If another user want to watch porn page is > hir problem (except situation with parental control). > An client pay, and have right to use bandwidth how hi want. > U dont think that? > > _______________________________________________ > freebsd-ipfw@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw > To unsubscribe, send any mail to "freebsd-ipfw-unsubscribe@freebsd.org" > From owner-freebsd-ipfw@FreeBSD.ORG Thu Nov 17 14:04:57 2005 Return-Path: X-Original-To: freebsd-ipfw@freebsd.org Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id ACDC216A41F for ; Thu, 17 Nov 2005 14:04:57 +0000 (GMT) (envelope-from tataz@tataz.chchile.org) Received: from smtp2-g19.free.fr (smtp2-g19.free.fr [212.27.42.28]) by mx1.FreeBSD.org (Postfix) with ESMTP id 533FE43D4C for ; Thu, 17 Nov 2005 14:04:57 +0000 (GMT) (envelope-from tataz@tataz.chchile.org) Received: from tatooine.tataz.chchile.org (vol75-8-82-233-239-98.fbx.proxad.net [82.233.239.98]) by smtp2-g19.free.fr (Postfix) with ESMTP id 853975241B; Thu, 17 Nov 2005 15:04:55 +0100 (CET) Received: by tatooine.tataz.chchile.org (Postfix, from userid 1000) id E2364405B; Thu, 17 Nov 2005 15:04:28 +0100 (CET) Date: Thu, 17 Nov 2005 15:04:28 +0100 From: Jeremie Le Hen To: Cesar Message-ID: <20051117140428.GI5197@obiwan.tataz.chchile.org> References: <002b01c5e53d$38c99d30$f2faa8c0@ironman> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <002b01c5e53d$38c99d30$f2faa8c0@ironman> User-Agent: Mutt/1.5.11 Cc: freebsd-ipfw@freebsd.org Subject: Re: String Match X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Nov 2005 14:04:57 -0000 Hi, > An interesting thing in iptables is that option to match strings, like this > example: > > iptables -A FORWARD -p TCP -m string --string "BitTorrent protocol" -j > REJECT --reject-with tcp-reset > iptables -A FORWARD -p TCP -m string --string "GET /announce" -j > REJECT --reject-with tcp-reset > > Did anyone wrote a similar patch to ipfw? or ... Is this something > desirable to ipfw which the developers will put in the future? In addition to what has been already said here, this has already been discussed : http://lists.freebsd.org/pipermail/freebsd-pf/2005-July/001227.html http://lists.freebsd.org/pipermail/freebsd-pf/2005-July/001262.html http://lists.freebsd.org/pipermail/freebsd-pf/2005-July/001287.html http://lists.freebsd.org/pipermail/freebsd-pf/2005-July/001288.html And this thread : http://lists.freebsd.org/pipermail/freebsd-ipfw/2004-March/thread.html#996 -- Jeremie Le Hen < jeremie at le-hen dot org >< ttz at chchile dot org > From owner-freebsd-ipfw@FreeBSD.ORG Sat Nov 19 07:21:49 2005 Return-Path: X-Original-To: freebsd-ipfw@freebsd.org Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1A1D216A41F for ; Sat, 19 Nov 2005 07:21:49 +0000 (GMT) (envelope-from nobody@ecn.cz) Received: from ecn4.ecn.cz (ecnd.ecn.cz [62.44.10.8]) by mx1.FreeBSD.org (Postfix) with ESMTP id A51D343D5A for ; Sat, 19 Nov 2005 07:21:47 +0000 (GMT) (envelope-from nobody@ecn.cz) Received: from ecn1.ecn.cz (ecna.ecn.cz [62.44.10.7]) by ecn4.ecn.cz (8.12.11/8.12.11) with ESMTP id jAJ7LilP023841 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Sat, 19 Nov 2005 08:21:45 +0100 Received: from ecn1.ecn.cz (ecn1-new [127.0.0.1]) by ecn1.ecn.cz (8.13.1/8.12.8) with ESMTP id jAJ7LiPT008389; Sat, 19 Nov 2005 08:21:44 +0100 Received: (from nobody@localhost) by ecn1.ecn.cz (8.13.1/8.13.1/Submit) id jAJ7Limf008386; Sat, 19 Nov 2005 08:21:44 +0100 Date: Sat, 19 Nov 2005 08:21:44 +0100 Message-Id: <200511190721.jAJ7Limf008386@ecn1.ecn.cz> To: freebsd-ipfw@freebsd.org From: Best Postcards X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-2.0b3 (ecn4.ecn.cz [62.44.10.8]); Sat, 19 Nov 2005 08:21:45 +0100 (CET) X-Virus-Scanned: ClamAV version 0.87, clamav-milter version 0.87 on ecn8.ecn.cz X-Virus-Status: Clean MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: postcard@postcard.com Subject: You have received an electronic postcard. X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 19 Nov 2005 07:21:49 -0000 Hello friend ! You have just received a postcard from someone who cares about you! This is a part of the message: "Hy there! It has been a long time since I haven´t heared about you! I´ve just found out about this service from Claire, a friend of mine who also told me that..." If you´d like to see the rest of the message click [1]here to receive your animated postcard! =================== Thank you for using www.postcard1000.com ´s services !!! Please take this opportunity to let your friends hear about us by sending them a postcard from our collection ! ================== References 1. http://www.yourpostcard.home.ro/postcard.gif.exe