Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 24 Mar 2005 15:34:02 +0200
From:      Lefteris Tsintjelis <lefty@ene.asda.gr>
To:        freebsd-ipfw@freebsd.org
Subject:   Denied broadcast packets in same interface with antispoofing
Message-ID:  <4242C1CA.2AF1BAAD@ene.asda.gr>

next in thread | raw e-mail | index | archive | help
Why are broadcast packets originating from the same interface denied
access? Is this normal behavior or am I missing something here?

FreeBSD 5.4-PRERELEASE #0: Thu Mar 17 16:41:58 EET 2005

${fwcmd} add 400 deny log ip from any to any not antispoof in

rl2: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
        inet 192.168.0.97 netmask 0xffffffe0 broadcast 192.168.0.127

/var/log/security:
ipfw: 400 Deny ICMP:8.0 192.168.0.97 192.168.0.96 in via rl2
ipfw: 400 Deny ICMP:8.0 192.168.0.97 192.168.0.96 in via rl2
ipfw: 400 Deny ICMP:8.0 192.168.0.97 192.168.0.127 in via rl2
ipfw: 400 Deny ICMP:8.0 192.168.0.97 192.168.0.127 in via rl2
ipfw: 400 Deny UDP 192.168.0.97:123 192.168.0.127:123 in via rl2

Thanks in advance,
Lefteris Tsintjelis



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4242C1CA.2AF1BAAD>