From owner-freebsd-questions@FreeBSD.ORG Mon Jan 16 01:14:14 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2A35916A41F for ; Mon, 16 Jan 2006 01:14:14 +0000 (GMT) (envelope-from wojtek@tensor.3miasto.net) Received: from chylonia.3miasto.net (chylonia.3miasto.net [213.192.74.6]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9C13E43D48 for ; Mon, 16 Jan 2006 01:14:09 +0000 (GMT) (envelope-from wojtek@tensor.3miasto.net) Received: from chylonia.3miasto.net (localhost [127.0.0.1]) by chylonia.3miasto.net (8.13.4/8.13.4) with ESMTP id k0G1Dk9G043116 for ; Mon, 16 Jan 2006 02:13:46 +0100 (CET) (envelope-from wojtek@tensor.3miasto.net) Received: from localhost (wojtek@localhost) by chylonia.3miasto.net (8.13.4/8.13.4/Submit) with ESMTP id k0G1Djr8043113 for ; Mon, 16 Jan 2006 02:13:46 +0100 (CET) (envelope-from wojtek@tensor.3miasto.net) X-Authentication-Warning: chylonia.3miasto.net: wojtek owned process doing -bs Date: Mon, 16 Jan 2006 02:13:45 +0100 (CET) From: Wojciech Puchar X-X-Sender: wojtek@chylonia.3miasto.net To: freebsd-questions@freebsd.org Message-ID: <20060116020929.Y42694@chylonia.3miasto.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Subject: ipfw+antispoof breaks IPv6 link local X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 16 Jan 2006 01:14:14 -0000 can it be solved? with first rule in my firewall config i have flush add 2 deny ip from any to any not antispoof works fine - as long as no IPv6 link-local communication is needed - route6d is an example. changing it to add 2 deny ip4 from any to any not antispoof is using link-local addresses spoofing?!