Date: Tue, 06 Jun 2017 21:22:19 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-bugs@FreeBSD.org Subject: [Bug 219815] ipfw stops working when more than one tables is used Message-ID: <bug-219815-8-tDxKmFJMhh@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-219815-8@https.bugs.freebsd.org/bugzilla/> References: <bug-219815-8@https.bugs.freebsd.org/bugzilla/>
index | next in thread | previous in thread | raw e-mail
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219815 --- Comment #3 from Andrey V. Elsukov <ae@FreeBSD.org> --- (In reply to ecsd from comment #2) > I am glad to hear there are not volume restrictions, but I fail to see what > logging has to do with rules failing to fire when traffic that would trigger > them is known for a certainty to have entered the machine. I could say "log > deny" but if the rule never fires, then - ? And this issue asks what is > wrong that adding as much as a 2nd table to the mix causes the firewall to > start failing past the point (sequence number) where the 2nd table reference > is made. You can add `log` action to the `allow` rules. I suspect your first `allow` rules do match the packets that you want to be matched by `deny` rules. -- You are receiving this mail because: You are the assignee for the bug.help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-219815-8-tDxKmFJMhh>