From owner-freebsd-stable Tue Feb 25 1:11: 9 2003 Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7B16637B401 for ; Tue, 25 Feb 2003 01:11:08 -0800 (PST) Received: from ldc.ro (ldc-gw.rdsnet.ro [213.157.163.8]) by mx1.FreeBSD.org (Postfix) with SMTP id 09FE043F3F for ; Tue, 25 Feb 2003 01:11:07 -0800 (PST) (envelope-from razor@ldc.ro) Received: (qmail 40054 invoked by uid 666); 25 Feb 2003 09:11:05 -0000 Date: Tue, 25 Feb 2003 11:11:05 +0200 From: Alex Popa To: freebsd-stable@freebsd.org Subject: IPFW2 and "prob" keyword problems Message-ID: <20030225091105.GA39847@ldc.ro> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4i Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG I recently switched a -stable system to ipfw2, and I added my usual rule for detecting bandwidth hogs (works great with a mrtg graph...): ipfw add 1 prob 0.0003 count log ip from any to any in via ed0 As I understand it (and it used to work on ipfw1), this rule should log about 3 packets in 10k that enter ed0. However, the behaviour seems a bit different, meaning that it logs each end every packet packet (ignores prob). System is cvsupped and compiled on February 19th Am I doing anything wrong? Alex (PS: I tested this with a simple ping -c 5, and it logged five out of five pings... I was expecting at least one to be missed, if not all) ------------+------------------------------------------------------- Alex Popa, | "Computer science is no more about computers than razor@ldc.ro| astronomy is about telescopes" -- E. W. Dijkstra ------------+------------------------------------------------------ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message