From owner-freebsd-questions  Wed Dec 25  3:28:16 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id F1B8037B401
	for <freebsd-questions@freebsd.org>; Wed, 25 Dec 2002 03:28:15 -0800 (PST)
Received: from relay1.ntu-kpi.kiev.ua (www.ntu-kpi.kiev.ua [212.111.192.161])
	by mx1.FreeBSD.org (Postfix) with ESMTP id E264043E4A
	for <freebsd-questions@freebsd.org>; Wed, 25 Dec 2002 03:28:12 -0800 (PST)
	(envelope-from simon@comsys.ntu-kpi.kiev.ua)
Received: from comsys.ntu-kpi.kiev.ua (eth0.comsys.ntu-kpi.kiev.ua [10.0.1.184])
	by relay1.ntu-kpi.kiev.ua (Postfix) with ESMTP
	id E930119C10; Wed, 25 Dec 2002 13:28:07 +0200 (EET)
Received: from pm514-9.comsys.ntu-kpi.kiev.ua (pm514-9.comsys.ntu-kpi.kiev.ua [10.18.54.109])
	by comsys.ntu-kpi.kiev.ua (8.11.6/8.11.6) with ESMTP id gBPBW4S64061;
	Wed, 25 Dec 2002 13:32:04 +0200 (EET)
Received: from pm514-9.comsys.ntu-kpi.kiev.ua (localhost [127.0.0.1])
	by pm514-9.comsys.ntu-kpi.kiev.ua (8.12.6/8.12.6) with ESMTP id gBPBRErq000351;
	Wed, 25 Dec 2002 13:27:14 +0200 (EET)
	(envelope-from simon@pm514-9.comsys.ntu-kpi.kiev.ua)
Received: (from simon@localhost)
	by pm514-9.comsys.ntu-kpi.kiev.ua (8.12.6/8.12.6/Submit) id gBPBRAcN000350;
	Wed, 25 Dec 2002 13:27:10 +0200 (EET)
Date: Wed, 25 Dec 2002 13:27:10 +0200 (EET)
Message-Id: <200212251127.gBPBRAcN000350@pm514-9.comsys.ntu-kpi.kiev.ua>
From: Andrey Simonenko <simon@comsys.ntu-kpi.kiev.ua>
To: ay@sita.kiev.ua
Cc: freebsd-questions@freebsd.org
Subject: Re: ipfw count Q
In-Reply-To: <20021222125518.A84159@sita.kiev.ua.lucky.freebsd.ipfw>
X-Newsgroups: lucky.freebsd.ipfw,lucky.freebsd.questions
User-Agent: tin/1.5.12-20020427 ("Sugar") (UNIX) (FreeBSD/4.7-RELEASE (i386))
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

On Sun, 22 Dec 2002 11:10:01 +0000 (UTC) in lucky.freebsd.questions, Alexander Yeremenko wrote:
>        I have a box, running as router.
>        Network A.B.C/Z is connected via ppp0
> router:/rc.firewall :
> ipfw add 10 connt all from any to any via ppp0
> ipfw add 15 connt all from any to A.B.C/Z 
> ipfw add 15 connt all from A.B.C/Z to any
>        Rules 10 and 15 gives absolutely different results.
>        What's wrong ? 
> 

Nothing is wrong, because #10 and #15 describe completely different firewall
rules. For example, #10 checks only packets via ppp0, but #15 checks packets
via any interface. And so on.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message