From owner-freebsd-questions Tue Mar 21 22: 0: 3 2000 Delivered-To: freebsd-questions@freebsd.org Received: from cc942873-a.ewndsr1.nj.home.com (cc942873-a.ewndsr1.nj.home.com [24.2.89.207]) by hub.freebsd.org (Postfix) with ESMTP id AC7C537B8CB for ; Tue, 21 Mar 2000 21:59:33 -0800 (PST) (envelope-from cjc@cc942873-a.ewndsr1.nj.home.com) Received: (from cjc@localhost) by cc942873-a.ewndsr1.nj.home.com (8.9.3/8.9.3) id AAA86033; Wed, 22 Mar 2000 00:58:47 -0500 (EST) (envelope-from cjc) Date: Wed, 22 Mar 2000 00:58:47 -0500 From: "Crist J. Clark" To: Bhishan Hemrajani Cc: freebsd-questions@FreeBSD.ORG Subject: Re: IPFW rule not working Message-ID: <20000322005847.J85043@cc942873-a.ewndsr1.nj.home.com> Reply-To: cjclark@home.com References: <200003220538.VAA95053@cytosine.dhs.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0i In-Reply-To: <200003220538.VAA95053@cytosine.dhs.org>; from bhishan@cytosine.dhs.org on Tue, Mar 21, 2000 at 09:38:27PM -0800 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Tue, Mar 21, 2000 at 09:38:27PM -0800, Bhishan Hemrajani wrote: > I have read the manpage for IPFW, but I still cannot > get this one rule for my firewall to work. I am > trying to deny all packets from this one ip address. > > This is the rule I am using: > ipfw add deny all from ip.x.x.x to any > > But, I am still able to access ip.x.x.x in any way, > via tcp, icmp, etc. > > Please help. Please post all your rules before this one ('ipfw l' output is good). Most likely, packets are matching a pass-rule before they reach this deny. -- Crist J. Clark cjclark@home.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message