From owner-freebsd-net@FreeBSD.ORG Wed Jul 4 14:44:33 2012 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 83A931065673 for ; Wed, 4 Jul 2012 14:44:33 +0000 (UTC) (envelope-from pprocacci@datapipe.com) Received: from EXFESMQ03.datapipe-corp.net (exfesmq03.datapipe.com [64.27.120.67]) by mx1.freebsd.org (Postfix) with ESMTP id 4A1AF8FC17 for ; Wed, 4 Jul 2012 14:44:32 +0000 (UTC) Received: from nat.myhome (192.168.128.103) by EXFESMQ03.datapipe-corp.net (192.168.128.28) with Microsoft SMTP Server (TLS) id 14.2.298.4; Wed, 4 Jul 2012 10:43:23 -0400 Date: Wed, 4 Jul 2012 09:43:42 -0500 From: "Paul A. Procacci" To: h bagade Message-ID: <20120704144342.GA1884@nat.myhome> References: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.21 (2010-09-15) X-Originating-IP: [192.168.128.103] Content-Transfer-Encoding: quoted-printable Cc: freebsd-net@freebsd.org Subject: Re: problem on ipfw using mac addresses X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 04 Jul 2012 14:44:33 -0000 Have you set net.link.ether.ipfw? ~Paul On Wed, Jul 04, 2012 at 05:34:04PM +0430, h bagade wrote: > Hi all, > > I have a problem using ipfw firewall. I have a topology connected as belo= w: > > A(192.168.1.55) ----- (192.168.1.1)my_sys(192.168.2.1) > -------(192.168.2.12)B > > I've set the rule "ipfw add 1 deny icmp from any to any" on my_sys, which > works correctly. I can't ping from A to B by the rule. Then I've added ma= c > part to the rule as the format of "ipfw add 1 deny icmp from any to any m= a > any any" which seems the same as before but after that I could ping the B > from A. > What's the reason? I'm really confused with what I saw! Is it a bug? > > Any hints or suggestions are really appreciated. > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" ________________________________ This message may contain confidential or privileged information. If you are= not the intended recipient, please advise us immediately and delete this m= essage. See http://www.datapipe.com/legal/email_disclaimer/ for further inf= ormation on confidentiality and the risks of non-secure electronic communic= ation. If you cannot access these links, please notify us by reply message = and we will send the contents to you.