From owner-freebsd-questions@FreeBSD.ORG Sun Nov 7 17:18:06 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0993616A4CE for ; Sun, 7 Nov 2004 17:18:06 +0000 (GMT) Received: from s1.stradamotorsports.com (ip30.gte215.dsl-acs2.sea.iinet.com [209.20.215.30]) by mx1.FreeBSD.org (Postfix) with ESMTP id 84F7443D45 for ; Sun, 7 Nov 2004 17:18:05 +0000 (GMT) (envelope-from jcw@highperformance.net) Received: from [192.168.1.16] ([192.168.1.16])iA7HI38m043794 for ; Sun, 7 Nov 2004 09:18:04 -0800 (PST) (envelope-from jcw@highperformance.net) Date: Sun, 07 Nov 2004 09:18:03 -0800 From: "Jason C. Wells" To: freebsd-questions@freebsd.org Message-ID: X-Mailer: Mulberry/3.1.5 (Win32) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Spam-Status: No, hits=0.0 required=4.0 tests=none version=2.55 X-Spam-Checker-Version: SpamAssassin 2.55 (1.174.2.19-2003-05-19-exp) Subject: Ipfw Impossibility - Perpetual Motion Achieved! X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 07 Nov 2004 17:18:06 -0000 Pray tell how is this report from 'ipfw show' even possible? 17100 3 228 count ip from any to any 65535 27 1986 deny ip from any to any If rule 17100 only counted three packets, then how did the very next rule count 27? I do not use 'skipto' rules. We appear to be passing more packets out of rule 17100 than are going in. If we can harness this energy, we can power the universe! :) Thanks, Jason C. Wells