Date: Sat, 06 May 2006 17:09:50 +0300 From: Alexander <shulik_freebsd@matrixhome.net> To: "Tiago N. Sampaio" <tiago@codigobinario.com.br>, freebsd-isp@freebsd.org Subject: Re: IPFW and syslog Message-ID: <445CAE2E.90308@matrixhome.net> In-Reply-To: <445CA8C7.7080507@codigobinario.com.br> References: <445C50A0.2070709@matrixhome.net> <20060506073907.O54242@maildrop.int.zabbadoz.net> <445C6ACB.6020502@matrixhome.net> <20060506103551.S54242@maildrop.int.zabbadoz.net> <445CA23C.3010306@matrixhome.net> <445CA8C7.7080507@codigobinario.com.br>
next in thread | previous in thread | raw e-mail | index | archive | help
Tiago N. Sampaio wrote: > did you try add deny log ip from any to any? > ipfw add 65000 deny log ip from any to any > If I'll add rule deny any any at the end, it will be last rule between other rules and all packets will be dropped (one_pass = 0). But I don't understand, why if I add deny any any as first rules - traffic dropped. > Hugs > Tiago N. Sampaio > > Alexander wrote: >> So, I also try ipfw add 99 deny ip from any to any, but got the same >> trouble... >> >> Bjoern A. Zeeb wrote: >> >>> On Sat, 6 May 2006, Alexander wrote: >>> >>> >>>> Bjoern A. Zeeb wrote: >>>> >>>>> On Sat, 6 May 2006, Alexander wrote: >>>>> >>>>> >>>>>> Default rule is deny. >>>>>> Some packets is registered under default rule, but I can't find >>>>>> documentation - how log to syslog packets, that denied in default >>>>>> rules. >>>>>> >>>>> Add the same rule with rule number - 1 and add log statement. >>>>> >>>>> >>>> Gmmmm! I have added rule: ipfw add 1 deny ip from any to any >>>> And server dropped all packets... >>>> >>> Well >>> "rule number" (for default rule) - 1 == 65535 - 1 == 65534 >>> >>> I guess I should have added quotes or braces or the sample. >>> >>> Sorry for the trouble... >>> >>> >> >> _______________________________________________ >> freebsd-isp@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-isp >> To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" >> > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?445CAE2E.90308>