From owner-freebsd-bugs@FreeBSD.ORG Sun Apr 13 06:10:00 2014 Return-Path: Delivered-To: freebsd-bugs@smarthost.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id B167F229 for ; Sun, 13 Apr 2014 06:10:00 +0000 (UTC) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:1900:2254:206c::16:87]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 752261A93 for ; Sun, 13 Apr 2014 06:10:00 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.8/8.14.8) with ESMTP id s3D6A0B9089993 for ; Sun, 13 Apr 2014 06:10:00 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.8/8.14.8/Submit) id s3D6A0Rk089991; Sun, 13 Apr 2014 06:10:00 GMT (envelope-from gnats) Resent-Date: Sun, 13 Apr 2014 06:10:00 GMT Resent-Message-Id: <201404130610.s3D6A0Rk089991@freefall.freebsd.org> Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer) Resent-To: freebsd-bugs@FreeBSD.org Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, Bill Yuan Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id C47211D9 for ; Sun, 13 Apr 2014 06:00:56 +0000 (UTC) Received: from cgiserv.freebsd.org (cgiserv.freebsd.org [IPv6:2001:1900:2254:206a::50:4]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id B226E19F8 for ; Sun, 13 Apr 2014 06:00:56 +0000 (UTC) Received: from cgiserv.freebsd.org ([127.0.1.6]) by cgiserv.freebsd.org (8.14.8/8.14.8) with ESMTP id s3D60ut6058478 for ; Sun, 13 Apr 2014 06:00:56 GMT (envelope-from nobody@cgiserv.freebsd.org) Received: (from nobody@localhost) by cgiserv.freebsd.org (8.14.8/8.14.8/Submit) id s3D60uXY058471; Sun, 13 Apr 2014 06:00:56 GMT (envelope-from nobody) Message-Id: <201404130600.s3D60uXY058471@cgiserv.freebsd.org> Date: Sun, 13 Apr 2014 06:00:56 GMT From: Bill Yuan To: freebsd-gnats-submit@FreeBSD.org X-Send-Pr-Version: www-3.1 Subject: kern/188543: ipfw option `in` is not working on FreeBSD10 X-BeenThere: freebsd-bugs@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: Bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 13 Apr 2014 06:10:00 -0000 >Number: 188543 >Category: kern >Synopsis: ipfw option `in` is not working on FreeBSD10 >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Sun Apr 13 06:10:00 UTC 2014 >Closed-Date: >Last-Modified: >Originator: Bill Yuan >Release: 10 release >Organization: cozilyworks >Environment: FreeBSD FB10 10.0-RELEASE FreeBSD 10.0-RELEASE #0: Sun Apr 13 03:14:30 HKT 2014 root@FB10:/usr/obj/usr/src/sys/GENERIC amd64 >Description: according to the man page, the rule option `in|out` are still supported in FreeBSD10. But somehow the rule with in did not match anything in my case. >How-To-Repeat: root@FB10:~ # ipfw -f flush Flushed all rules. //Create rules <--------------------------------- root@FB10:~ # ipfw add count all from any to any MAC any any in via em0 00100 count ip from any to any MAC any any in via em0 root@FB10:~ # ipfw add count all from any to any MAC any any via em0 00200 count ip from any to any MAC any any via em0 //Check counters<----------------------------------- root@FB10:~ # ipfw show 00100 0 0 count ip from any to any MAC any any in via em0 00200 26 2232 count ip from any to any MAC any any via em0 65535 3453 293448 allow ip from any to any >Fix: >Release-Note: >Audit-Trail: >Unformatted: