Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 18 Apr 2013 08:22:42 GMT
From:      Jukka Ukkonen <jau@oxit.fi>
To:        freebsd-gnats-submit@FreeBSD.org
Subject:   kern/177948: ipfw fails to parse port ranges (p1-p2) for udp
Message-ID:  <201304180822.r3I8MgRg030110@red.freebsd.org>
Resent-Message-ID: <201304180830.r3I8U1us089114@freefall.freebsd.org>

next in thread | raw e-mail | index | archive | help

>Number:         177948
>Category:       kern
>Synopsis:       ipfw fails to parse port ranges (p1-p2) for udp
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Thu Apr 18 08:30:00 UTC 2013
>Closed-Date:
>Last-Modified:
>Originator:     Jukka Ukkonen
>Release:        9.1-STABLE
>Organization:
-
>Environment:
FreeBSD sleipnir 9.1-STABLE FreeBSD 9.1-STABLE #0 r249607M: Thu Apr 18 09:18:42 EEST 2013     root@sleipnir:/usr/obj/usr/src/sys/Sleipnir  amd64

>Description:
ipfw does not understand port ranges on lines like this...

add 03011 deny log udp from any to any 1024-65535 in recv em1

Instead of treating the numbers and the dash between them as a port range
it complains about "-65535".

The error has been occurring only when the protocol has been UDP.
When the protocol is TCP ipfw properly handles the port range as expected.
Notice that SCTP has not been tested.

>How-To-Repeat:
Try adding a configuration line like the one shown in "full description",
restart ipfw, and see it complain something like this...

Line 7368: unrecognised option [-1] -65535

>Fix:
No idea yet.


>Release-Note:
>Audit-Trail:
>Unformatted:



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201304180822.r3I8MgRg030110>