From owner-freebsd-questions  Thu Aug 26 19: 1:38 1999
Delivered-To: freebsd-questions@freebsd.org
Received: from awfulhak.org (dynamic-22.max1-du-ws.dialnetwork.pavilion.co.uk [212.74.8.22])
	by hub.freebsd.org (Postfix) with ESMTP id 5B15C14F64
	for <freebsd-questions@FreeBSD.ORG>; Thu, 26 Aug 1999 19:01:33 -0700 (PDT)
	(envelope-from brian@Awfulhak.org)
Received: from keep.lan.Awfulhak.org (root@keep.lan.Awfulhak.org [172.16.0.8])
	by awfulhak.org (8.9.3/8.9.3) with ESMTP id AAA12456;
	Fri, 27 Aug 1999 00:53:50 +0100 (BST)
	(envelope-from brian@lan.awfulhak.org)
Received: from keep.lan.Awfulhak.org (brian@localhost.lan.Awfulhak.org [127.0.0.1])
	by keep.lan.Awfulhak.org (8.9.3/8.9.3) with ESMTP id AAA38790;
	Fri, 27 Aug 1999 00:57:12 +0100 (BST)
	(envelope-from brian@keep.lan.Awfulhak.org)
Message-Id: <199908262357.AAA38790@keep.lan.Awfulhak.org>
X-Mailer: exmh version 2.0.2 2/24/98
To: "Carleton A. Williams" <carl@williams.mv.com>
Cc: freebsd-questions@FreeBSD.ORG
Subject: Re: Problem setting up PPP filters 
In-reply-to: Your message of "Mon, 23 Aug 1999 18:57:07 EDT."
             <00c201beedba$d43f49d0$322aa8c0@home.net> 
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Fri, 27 Aug 1999 00:57:11 +0100
From: Brian Somers <brian@Awfulhak.org>
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

keep:~ $ ppp
Working in interactive mode
Using interface: tun0
ppp ON keep> set filter dial 0 deny icmp
ppp ON keep> set filter dial 1 deny 0/0 198.168.0.0/16
ppp ON keep> set filter dial 6 permit 0/0 0/0
ppp ON keep> show filter dial
   0   deny   0.0.0.0/0 0.0.0.0/0 icmp
   1   deny   0.0.0.0/0 198.168.0.0/16 
   6 permit   0.0.0.0/0 0.0.0.0/0 
ppp ON keep> q
keep:~ $ sudo tail -4 /etc/ppp/ppp.conf
x:
 set filter dial 0 deny icmp
 set filter dial 1 deny 0/0 198.168.0.0/16
 set filter dial 6 permit 0/0 0/0
keep:~ $ ppp x
Working in interactive mode
Using interface: tun0
ppp ON keep> show filter dial
   0   deny   0.0.0.0/0 0.0.0.0/0 icmp
   1   deny   0.0.0.0/0 198.168.0.0/16 
   6 permit   0.0.0.0/0 0.0.0.0/0 
ppp ON keep> 


> I have scanned the newsgroups, but find nothing relating to this problem.
> 
> PPP seems to be ignoring the lowest numbered and highest numbered filters when the "set filter ..." commands are edited into ppp.conf
> 
> If I place the following commands in ppp.conf:
> 
>   set filter dial 0 deny icmp
>   set filter dial 1 deny 0/0 198.168.0.0/16
>   set filter dial 6 permit 0/0 0/0
> 
> then do "show filter dial", either by running ppp in interactive mode or by connecting to a diagnostic port, I get:
> 
> 1  deny     0.0.0.0/0 198.168.0.0/16
> 
> Just that one line! If I then (re)enter the missing filter commands interactively, the show command produces:
> 
> 0  deny     0.0.0.0/0 0.0.0.0/0 icmp
> 1  deny     0.0.0.0/0 198.168.0.0/16
> 6  permit   0.0.0.0/0 0.0.0.0/0
> 
> after which the filter seems to work as intended.
> 
> Any idea what gives?
> 
> Thanks,
> 
> Carl
[.....]

BTW, please don't post html.

-- 
Brian <brian@Awfulhak.org>                        <brian@FreeBSD.org>
      <http://www.Awfulhak.org>                   <brian@OpenBSD.org>
Don't _EVER_ lose your sense of humour !          <brian@FreeBSD.org.uk>




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message