From owner-freebsd-ipfw@FreeBSD.ORG  Tue Nov 23 21:36:21 2004
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
Delivered-To: freebsd-ipfw@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 69D6F16A4CF
	for <freebsd-ipfw@freebsd.org>; Tue, 23 Nov 2004 21:36:21 +0000 (GMT)
Received: from mailhost.wsf.at (server202.serveroffice.com [217.196.72.202])
	by mx1.FreeBSD.org (Postfix) with ESMTP id B390243D31
	for <freebsd-ipfw@freebsd.org>; Tue, 23 Nov 2004 21:36:19 +0000 (GMT)
	(envelope-from tw@wsf.at)
Received: from mailhost.wsf.at (root@localhost)iANLWSEj049728
	for <freebsd-ipfw@freebsd.org>; Tue, 23 Nov 2004 22:32:28 +0100 (CET)
	(envelope-from tw@wsf.at)
Received: from mailhost.wsf.at (http.wsf.at [217.196.72.203])
	iANLWRdn049715;	Tue, 23 Nov 2004 22:32:27 +0100 (CET)
	(envelope-from tw@wsf.at)
Date: Tue, 23 Nov 2004 21:32:27 -0000
To: NetAdmin <daemon@foxchat.net>, freebsd-ipfw@freebsd.org
From: Thomas Wolf <tw@wsf.at>
X-Mailer: twiggi 1.10.3
Message-ID: <20041123223227.gjztbix9gu0wkg@.mailhost.wsf.at>
MIME-Version: 1.0
Content-Disposition: inline
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Subject: Re: IPFW2 tables
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: tw@wsf.at
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 23 Nov 2004 21:36:21 -0000


NetAdmin <daemon@foxchat.net> schrieb:

> 	I just found out about tables.  I've been trying to google for correct
> syntax but as yet have not been able to find anything.  Can anyone
> direct me to a good howto for setting up IPFW tables?  Using 5.3
> Release.
> 
> did the following;
> 
> # ipfw table 1 add 0.0.0.0/8
> 
> shows
> # ipfw table 1 list
> 0.0.0.0/8 0
> 
> Set rule as; *Note: found there was a problem using table (1)
> {fwcmd} add 300 deny ip from table '1' to me

The correct syntax that should work under any shell should be
{fwcmd} add 300 deny ip from table\(1\) to me
or
{fwcmd} add 300 deny ip from "table(1)" to me


> The odd part is, I get this with the 'ipfw show' command
> # ipfw show
> 00300 deny ip from 216.65.30.238 1 to me

Hm. is 'table' a hostname in your network? When i tried
your syntax, i got:
tele# ipfw add 1 count all from table '1' to me
ipfw: hostname ``table'' unknown
tele#

Thomas

--
Thomas Wolf
Wiener Software Fabrik
Dubas u. Wolf GMBH
1050 Wien, Mittersteig 4