From owner-freebsd-current Wed Jan 15 07:31:50 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id HAA06574 for current-outgoing; Wed, 15 Jan 1997 07:31:50 -0800 (PST) Received: from tfs.com (tfs.com [140.145.250.1]) by freefall.freebsd.org (8.8.4/8.8.4) with SMTP id HAA06569 for ; Wed, 15 Jan 1997 07:31:48 -0800 (PST) Received: from schizo.dk.tfs.com by tfs.com (smail3.1.28.1) with SMTP id m0vkXJ6-0003xGC; Wed, 15 Jan 97 07:31 PST Received: from critter.dk.tfs.com (critter.dk.tfs.com [140.145.230.252]) by schizo.dk.tfs.com (8.8.2/8.7.3) with ESMTP id QAA11409 for ; Wed, 15 Jan 1997 16:31:15 +0100 (MET) Received: from critter.dk.tfs.com (localhost [127.0.0.1]) by critter.dk.tfs.com (8.8.2/8.8.2) with ESMTP id QAA27395 for ; Wed, 15 Jan 1997 16:32:14 +0100 (MET) To: current@freebsd.org Subject: ipfw cannot do this... Reply-to: phk@freebsd.org Date: Wed, 15 Jan 1997 16:32:14 +0100 Message-ID: <27393.853342334@critter.dk.tfs.com> From: Poul-Henning Kamp Sender: owner-current@freebsd.org X-Loop: FreeBSD.org Precedence: bulk I just found out one thing we need in ipfw, the ability to inverse the sense of a rule: ipfw add deny not ip from 140.145.0.0 to any via ed0 ipfw add deny not ip from any to 140.145.0.0 via ed1 ^^^ ipfw add allow tcp from any to any 23 ipfw add allow tcp from any to any 25 ... any takers ? -- Poul-Henning Kamp | phk@FreeBSD.ORG FreeBSD Core-team. http://www.freebsd.org/~phk | phk@login.dknet.dk Private mailbox. whois: [PHK] | phk@tfs.com TRW Financial Systems, Inc. Future will arrive by its own means, progress not so.