Date: Sun, 06 Apr 2014 17:57:14 +0700 From: Eugene Grosbein <eugen@grosbein.net> To: Brett Glass <brett@lariat.net> Cc: net@freebsd.org Subject: Re: IPFW and VLANs Message-ID: <5341330A.70603@grosbein.net> In-Reply-To: <201404060226.UAA10958@mail.lariat.net> References: <201404060226.UAA10958@mail.lariat.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On 06.04.2014 09:26, Brett Glass wrote: > I added a few more rules, with "recv" and "xmit" options, and > checked the counts again after zeroing them and letting the router > run for a bit: > > 00001 20591 8769298 count ip from any to any layer2 via re0_1 > 00002 18715 8725085 count ip from any to any layer2 via re0 > 00003 0 0 count ip from any to any not layer2 via re0 > 00004 18715 8725085 count ip from any to any layer2 recv re0 > 00005 18715 8725085 count ip from any to any layer2 xmit re0 > 00006 12746 1324342 count ip from any to any layer2 recv re0_1 > 00007 20592 8770798 count ip from any to any layer2 xmit re0_1 > > Maybe I am missing something (as I often do), but this seems just plain wrong. > > What gives? Help in interpreting these results would be much appreciated. You should use "in recv" and "out xmit" instead of just recv/xmit as routed packet will match BOTH of "recv $in_if" and "xmit $out_if".
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5341330A.70603>