From owner-freebsd-ipfw Tue Jul 23 3:46:17 2002 Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2D8E637B400 for ; Tue, 23 Jul 2002 03:46:15 -0700 (PDT) Received: from jim.skynet.lt (jim.skynet.lt [212.122.68.65]) by mx1.FreeBSD.org (Postfix) with SMTP id 23C7443E3B for ; Tue, 23 Jul 2002 03:46:09 -0700 (PDT) (envelope-from dd@skynet.lt) Received: (qmail 40379 invoked from network); 23 Jul 2002 10:46:05 -0000 Received: from unknown (HELO freespace) (10.255.1.110) by jim.skynet.vl with SMTP; 23 Jul 2002 10:46:05 -0000 From: "Dmitry Demyanchuk" To: Subject: ipfw2 bug? Date: Tue, 23 Jul 2002 12:46:06 +0200 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal Sender: owner-freebsd-ipfw@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Im using a combination of ipfw&natd+ipf&ipnat together on my router running fbsd4.6-stable. Upgrading the ipfw to ipfw2 had the following results: 1) i dont know if it is a bug, but the fwd action appears to be disabled in IPFW2. Monitoring the interface with tcpdump, there is no forwarded traffic, but the rule counter keep on increasing. 2) im getting the following message: root@hydra:/usr/src/sys:> ipfw add 25 allow ip from 10.1.1.0/24{1,2} to any ipfw: bad width ``241'' root@hydra:/usr/src/sys:> sources used and working so far: FreeBSD 4.6-STABLE #0: Tue Jul 23 01:19:17 EET 2002 * $FreeBSD: src/sbin/ipfw/ipfw2.c,v 1.2 2002/07/05 22:43:06 luigi Exp $ * $FreeBSD: src/sys/netinet/ip_fw.h,v 1.73 2002/07/17 07:21:42 luigi Exp $ * $FreeBSD: src/sys/netinet/ip_fw2.c,v 1.5 2002/07/14 23:47:18 luigi Exp $ * $FreeBSD: src/sys/netinet/ip_dummynet.c,v 1.24.2.15 2002/07/18 04:43:52 luigi Exp $ * $FreeBSD: src/sys/netinet/ip_dummynet.h,v 1.10.2.5 2002/07/09 09:11:42 luigi Exp $ ip_fw2.h from ipfw2.stable.020715.diffs patch other "set" of sources caused the box to crash/panic when packet hit any of the pipe/dummynet rule ------------------------- Dmitry Demyanchuk SkyNET SA http://www.skynet.lt To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message