Date: Fri, 27 May 2005 19:32:42 +0200 From: Max Laier <max@love2party.net> To: Richard Tector <richardtector@thekeelecentre.com> Cc: freebsd-ipfw@freebsd.org Subject: Re: [PATCH] ipv4 only rules (test and feedback) Message-ID: <200505271932.51562.max@love2party.net> In-Reply-To: <4295B14B.2010302@thekeelecentre.com> References: <200505251634.34478.max@love2party.net> <4295B14B.2010302@thekeelecentre.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--nextPart1897485.zv0pCGQFg7 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Thursday 26 May 2005 13:21, Richard Tector wrote: > Max Laier wrote: > >With the patch attached you can now do: > > > > ipfw add 100 deny ipv4 from any to any > >or > > ipfw add 100 deny ipv6 from any to any > > > >to block IPv4 or IPv6. > > How would you, for example, deny all udp traffic over ipv4 but not ipv6? > Is this possible with ipfw2 as it stands? ipfw add 100 deny ipv4 from any to any proto udp should do the trick, but unfortunately this comes back as: 100 deny udp from any to any so I have to fix ipfw show for these cases. Thanks for bringing this up. =2D-=20 /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --nextPart1897485.zv0pCGQFg7 Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (FreeBSD) iD8DBQBCl1nDXyyEoT62BG0RAmwqAJ92beSc5yn4C9NtpWiC3apez3bvcQCcCQta UUWU87uAJZnTYz3hxFxpjwk= =YRwt -----END PGP SIGNATURE----- --nextPart1897485.zv0pCGQFg7--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200505271932.51562.max>