From owner-freebsd-security Fri Aug 25 4:45:39 2000 Delivered-To: freebsd-security@freebsd.org Received: from mail.gmx.net (pop.gmx.net [194.221.183.20]) by hub.freebsd.org (Postfix) with SMTP id BCB3937B424 for ; Fri, 25 Aug 2000 04:45:36 -0700 (PDT) Received: (qmail 4629 invoked by uid 0); 25 Aug 2000 11:45:35 -0000 Received: from kirk.asco.de (HELO dhcp2.internal) (194.123.96.193) by mail.gmx.net with SMTP; 25 Aug 2000 11:45:35 -0000 Received: from thomas by dhcp2.internal with local (Exim 3.13 #1) id 13SHxH-0005CG-00 for freebsd-security@freebsd.org; Fri, 25 Aug 2000 13:47:27 +0200 Date: Fri, 25 Aug 2000 13:47:27 +0200 From: Thomas Moestl To: freebsd-security@freebsd.org Subject: Re: ipfw & ospf Message-ID: <20000825134727.A19949@dhcp2.internal> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from marquis@roble.com on Thu, Aug 24, 2000 at 09:58:31PM -0700 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, Aug 24, 2000 at 09:58:31PM -0700, Roger Marquis wrote: > Does anyone know why trafshow/tcpdump still reports OSPF traffic > after the application of these ipfw rules? > > /sbin/ipfw add 115 deny ospf from any to any > /sbin/ipfw add 115 deny all from 224.0.0.0/8 to any I am not really sure right now, but don't you overwrite the first rule with the second when you specify the same rule number for both? Thomas To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message