Skip site navigation (1)Skip section navigation (2)
Date:      Fri, 13 Mar 2015 01:18:56 +0000
From:      Glen Barber <gjb@FreeBSD.org>
To:        =?utf-8?B?0JDQu9C10LrRgdC10Lkg0J/RgNCw0YY=?= <mail@leha.info>
Cc:        freebsd-doc@FreeBSD.org
Subject:   Re: there is a mistake in ipfw docs on your site
Message-ID:  <20150313011856.GC1297@hub.FreeBSD.org>
In-Reply-To: <55023744.5020800@leha.info>
References:  <55023744.5020800@leha.info>

next in thread | previous in thread | raw e-mail | index | archive | help

--eHhjakXzOLJAF9wJ
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Fri, Mar 13, 2015 at 04:03:00AM +0300, =D0=90=D0=BB=D0=B5=D0=BA=D1=81=D0=
=B5=D0=B9 =D0=9F=D1=80=D0=B0=D1=86 wrote:
> hello
> talking about this page:
> https://www.freebsd.org/doc/en/books/handbook/firewalls-ipfw.html
> there's RFC (http://www.rfc-editor.org/rfc/rfc5735.txt), which says:
>=20
> 4.  Summary Table
>=20
> Address Block       Present Use                Reference
> ------------------------------------------------------------------
> 0.0.0.0/8           "This" Network             RFC 1122, Section 3.2.1.3
> 10.0.0.0/8          Private-Use Networks       RFC 1918
> 127.0.0.0/8         Loopback                   RFC 1122, Section 3.2.1.3
> 169.254.0.0/16      Link Local                 RFC 3927
> 172.16.0.0/12       Private-Use Networks       RFC 1918
> 192.0.0.0/24        IETF Protocol Assignments  RFC 5736
> 192.0.2.0/24        TEST-NET-1                 RFC 5737
> 192.88.99.0/24      6to4 Relay Anycast         RFC 3068
> 192.168.0.0/16      Private-Use Networks       RFC 1918
> 198.18.0.0/15       Network Interconnect
>                     Device Benchmark Testing   RFC 2544
> 198.51.100.0/24     TEST-NET-2                 RFC 5737
> 203.0.113.0/24      TEST-NET-3                 RFC 5737
> 224.0.0.0/4         Multicast                  RFC 3171
> 240.0.0.0/4         Reserved for Future Use    RFC 1112, Section 4
> 255.255.255.255/32  Limited Broadcast          RFC 919, Section 7
>                                                RFC 922, Section 7
> -------------
>=20
> BUT
> your page says:
>=20
> $cmd 00307 deny all from 204.152.64.0/23 to any in via $pif    #Sun clust=
er interconnect
> $cmd 00308 deny all from 224.0.0.0/3 to any in via $pif        #Class D &=
 E multicast
>=20
> there's no 204.152.64.0 in RFC and there's mask /4 not /3
>=20
> please tell me what i don't understand?
>=20

Please clarify which address block you are referencing.  You quoted:
224.0.0.0/3 and 204.152.64.0/23, but the former has a '/3' (not '/4'),
and the latter has '/23'.

I suspect you are referencing 224.0.0.0/3, but you also do not specify
the RFC either, so I do not want to make assumptions here.

Glen


--eHhjakXzOLJAF9wJ
Content-Type: application/pgp-signature

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
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=fba+
-----END PGP SIGNATURE-----

--eHhjakXzOLJAF9wJ--



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20150313011856.GC1297>