From owner-freebsd-questions@FreeBSD.ORG Tue Jan 13 18:39:46 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3ED3316A4CE for ; Tue, 13 Jan 2004 18:39:46 -0800 (PST) Received: from mta11.adelphia.net (mta11.adelphia.net [68.168.78.205]) by mx1.FreeBSD.org (Postfix) with ESMTP id 37A5D43D4C for ; Tue, 13 Jan 2004 18:39:45 -0800 (PST) (envelope-from fbsd_user@a1poweruser.com) Received: from barbish ([67.20.101.103]) by mta11.adelphia.net (InterMail vM.5.01.06.05 201-253-122-130-105-20030824) with SMTP id <20040114023944.ZIBL21134.mta11.adelphia.net@barbish> for ; Tue, 13 Jan 2004 21:39:44 -0500 From: "fbsd_user" To: "freebsd-questions@FreeBSD. ORG" Date: Tue, 13 Jan 2004 21:39:43 -0500 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 Subject: IPFW 'keep state' & 'limit' X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: fbsd_user@a1poweruser.com List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 14 Jan 2004 02:39:46 -0000 Reading the man page on IPFW rule syntax, I get the impression that the 'limit' option uses the stateful dynamic rules table. But it's unclear whether 'keep state' and limit can be used on the same rule, or if the limit option performs the 'keep state' function in addition to the limit function. So as an example $cmd 00390 allow tcp from any to any 22 in via dc0 setup keep-state limit src-addr 3 will this work?