Date: Sat, 26 Nov 2005 09:30:37 -0800 From: Mark Edwards <mark@antsclimbtree.com> To: questions@FreeBSD.ORG Subject: Re: verrevpath -- ipfw: unknown argument ``not'' Message-ID: <9EDDDA9A-47A5-4B70-A1E5-6DADA46A8B91@antsclimbtree.com> In-Reply-To: <44sltjphda.fsf@be-well.ilk.org> References: <536B393F-0E66-4B10-89A7-E0D4D82C87D7@antsclimbtree.com> <44sltjphda.fsf@be-well.ilk.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Nov 26, 2005, at 7:18 AM, Lowell Gilbert wrote: > Mark Edwards <mark@antsclimbtree.com> writes: > >> I am trying to implement the verrevpath suggestion in the ipfw man >> page, as follows: >> >>> The verrevpath option could be used to do automated anti- >>> spoofing by >>> adding the following to the top of a ruleset: >>> >>> ipfw add deny ip from any to any not verrevpath in >> >> However, when I try to add the rule, I get an error: >> >>> lilbuddy:~ paimin$ ipfw add deny ip from any to any not >>> verrevpath in >>> ipfw: unknown argument ``not'' >> >> Can someone tell what is causing this syntax to fail? Thanks! > > Works fine for me right now on -STABLE (RELENG_6). > You didn't mention what you were running, so there's not much else we > can tell you. Sorry, I am running 4.11, and nothing weird that I know of that would affect ipfw operation. I found a posting via google from someone with the same question, and then he replied to himself that reading the man page had given him the answer, but he didn't say what that answer was. Tried to email him, but it bounced because my mail gateway doesn't have an SPF record so his server rejected my mail (even though my server DOES have an SPF record -- ugh). Thanks! -- Mark Edwards
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?9EDDDA9A-47A5-4B70-A1E5-6DADA46A8B91>