From owner-freebsd-questions Tue Mar 21 22: 0:14 2000 Delivered-To: freebsd-questions@freebsd.org Received: from cytosine.dhs.org (cx272244-a.orng1.occa.home.com [24.1.177.149]) by hub.freebsd.org (Postfix) with ESMTP id 3B7B337C0DE for ; Tue, 21 Mar 2000 22:00:03 -0800 (PST) (envelope-from bhishan@cytosine.dhs.org) Received: (from bhishan@localhost) by cytosine.dhs.org (8.9.3/8.9.3) id WAA95222; Tue, 21 Mar 2000 22:00:01 -0800 (PST) (envelope-from bhishan) From: Bhishan Hemrajani Message-Id: <200003220600.WAA95222@cytosine.dhs.org> Subject: Re: IPFW rule not working In-Reply-To: <20000322005847.J85043@cc942873-a.ewndsr1.nj.home.com> from "Crist J. Clark" at "Mar 22, 2000 00:58:47 am" To: cjclark@home.com Date: Tue, 21 Mar 2000 22:00:00 -0800 (PST) Cc: freebsd-questions@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL68 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I found out what the problem was, I had to specify a rule number. I used 1000. Thank you. --bhishan > On Tue, Mar 21, 2000 at 09:38:27PM -0800, Bhishan Hemrajani wrote: > > I have read the manpage for IPFW, but I still cannot > > get this one rule for my firewall to work. I am > > trying to deny all packets from this one ip address. > > > > This is the rule I am using: > > ipfw add deny all from ip.x.x.x to any > > > > But, I am still able to access ip.x.x.x in any way, > > via tcp, icmp, etc. > > > > Please help. > > Please post all your rules before this one ('ipfw l' output is > good). Most likely, packets are matching a pass-rule before they reach > this deny. > -- > Crist J. Clark cjclark@home.com > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message