Date: Fri, 13 Mar 2015 01:18:56 +0000 From: Glen Barber <gjb@FreeBSD.org> To: =?utf-8?B?0JDQu9C10LrRgdC10Lkg0J/RgNCw0YY=?= <mail@leha.info> Cc: freebsd-doc@FreeBSD.org Subject: Re: there is a mistake in ipfw docs on your site Message-ID: <20150313011856.GC1297@hub.FreeBSD.org> In-Reply-To: <55023744.5020800@leha.info> References: <55023744.5020800@leha.info>
next in thread | previous in thread | raw e-mail | index | archive | help
--eHhjakXzOLJAF9wJ Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Mar 13, 2015 at 04:03:00AM +0300, =D0=90=D0=BB=D0=B5=D0=BA=D1=81=D0= =B5=D0=B9 =D0=9F=D1=80=D0=B0=D1=86 wrote: > hello > talking about this page: > https://www.freebsd.org/doc/en/books/handbook/firewalls-ipfw.html > there's RFC (http://www.rfc-editor.org/rfc/rfc5735.txt), which says: >=20 > 4. Summary Table >=20 > Address Block Present Use Reference > ------------------------------------------------------------------ > 0.0.0.0/8 "This" Network RFC 1122, Section 3.2.1.3 > 10.0.0.0/8 Private-Use Networks RFC 1918 > 127.0.0.0/8 Loopback RFC 1122, Section 3.2.1.3 > 169.254.0.0/16 Link Local RFC 3927 > 172.16.0.0/12 Private-Use Networks RFC 1918 > 192.0.0.0/24 IETF Protocol Assignments RFC 5736 > 192.0.2.0/24 TEST-NET-1 RFC 5737 > 192.88.99.0/24 6to4 Relay Anycast RFC 3068 > 192.168.0.0/16 Private-Use Networks RFC 1918 > 198.18.0.0/15 Network Interconnect > Device Benchmark Testing RFC 2544 > 198.51.100.0/24 TEST-NET-2 RFC 5737 > 203.0.113.0/24 TEST-NET-3 RFC 5737 > 224.0.0.0/4 Multicast RFC 3171 > 240.0.0.0/4 Reserved for Future Use RFC 1112, Section 4 > 255.255.255.255/32 Limited Broadcast RFC 919, Section 7 > RFC 922, Section 7 > ------------- >=20 > BUT > your page says: >=20 > $cmd 00307 deny all from 204.152.64.0/23 to any in via $pif #Sun clust= er interconnect > $cmd 00308 deny all from 224.0.0.0/3 to any in via $pif #Class D &= E multicast >=20 > there's no 204.152.64.0 in RFC and there's mask /4 not /3 >=20 > please tell me what i don't understand? >=20 Please clarify which address block you are referencing. You quoted: 224.0.0.0/3 and 204.152.64.0/23, but the former has a '/3' (not '/4'), and the latter has '/23'. I suspect you are referencing 224.0.0.0/3, but you also do not specify the RFC either, so I do not want to make assumptions here. Glen --eHhjakXzOLJAF9wJ Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJVAjsAAAoJEAMUWKVHj+KTbgAP/0fpVZCBMuQakFq2VMmMUN9j sVhnYlgG1PR8yyqbTQ0GgIgnjM3XDF/NolzSgdEc7d630FVV6b56b8PCl0HQnYnF 6ukgDVn79/E4O65p/JkiujjiSNpEuX3/OcqqL44+Ts325c+G79htUYSnJ+swIoVy Ysm54QzGpgH6cI7C/sv37vUonWx2zV8K6gppi4IxctFN5P4EyvNjuPyksJ3A7JMZ zJnfvC28HOMALr22McRZpxll8sD3fDc9iv/xE3TWyAQ75H2VLM6xAR2hik2nooyD 10ScCkLLCb3oksK2uxybqXho3htLWkXWJrZfJABb53XeWcb7Ir4lNrtPKz4T00Z0 5K1DEBUfoi4guwW+g+uggMPg9N+ForVZJcQnv7rqEDq18xCRROCdBPwmF0tOT7rE z4IdqPyAiMthl0W085MwYXLHxW+ahPvnnkokBrp+Qm5Biwwq4WYOh5M5qALi6HEA b9+Np84Pe49ok1GKetkGayflQCFKv9jBH0nR23KD6hLHuckfK9fqnXJsx1/CV2Cq X+Q68EM8hsRPAmtwQ1hMPm4ugEFobt03swaKQqTjUsucg7WzmxZxcTX44WVmaBRc Q1paJGUL663a7LJZ3HqQi8aujrw5qFIpZzJWmjp4F51ZrxptdNpvRDtu1G36eRQp /pxDPkmtOPyZ4/Ak7UgE =fba+ -----END PGP SIGNATURE----- --eHhjakXzOLJAF9wJ--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20150313011856.GC1297>