From owner-freebsd-questions@FreeBSD.ORG Fri Mar 13 03:04:54 2015 Return-Path: Delivered-To: freebsd-questions@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id B42A317C for ; Fri, 13 Mar 2015 03:04:54 +0000 (UTC) Received: from mail.gsicomp.on.ca (salamander.gsicomp.on.ca [162.243.98.91]) by mx1.freebsd.org (Postfix) with ESMTP id 90179BC9 for ; Fri, 13 Mar 2015 03:04:54 +0000 (UTC) Received: from HEXEN (ip-104-193-58-36.user.start.ca [104.193.58.36]) by mail.gsicomp.on.ca (Postfix) with ESMTPA id B2456408B4; Thu, 12 Mar 2015 22:57:39 -0400 (EDT) From: "Matt Emmerton" To: , References: <55024880.7080709@leha.info> In-Reply-To: <55024880.7080709@leha.info> Subject: RE: there is a mistake in ipfw docs on your site Date: Thu, 12 Mar 2015 22:59:33 -0400 Message-ID: <002e01d05d39$bbcbf790$3363e6b0$@on.ca> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Mailer: Microsoft Office Outlook 12.0 Content-Language: en-us Thread-Index: AdBdM8E1T0kAnbdNRXKjajPeu30BHgABdxzA X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 13 Mar 2015 03:04:54 -0000 -----Original Message----- From: owner-freebsd-questions@freebsd.org [mailto:owner-freebsd-questions@freebsd.org] On Behalf Of ??????? ???? Sent: Thursday, March 12, 2015 10:17 PM To: freebsd-questions@FreeBSD.org Subject: there is a mistake in ipfw docs on your site hello talking about this page: https://www.freebsd.org/doc/en/books/handbook/firewalls-ipfw.html there's RFC (http://www.rfc-editor.org/rfc/rfc5735.txt), which says: 4. Summary Table Address Block Present Use Reference ------------------------------------------------------------------ 0.0.0.0/8 "This" Network RFC 1122, Section 3.2.1.3 10.0.0.0/8 Private-Use Networks RFC 1918 127.0.0.0/8 Loopback RFC 1122, Section 3.2.1.3 169.254.0.0/16 Link Local RFC 3927 172.16.0.0/12 Private-Use Networks RFC 1918 192.0.0.0/24 IETF Protocol Assignments RFC 5736 192.0.2.0/24 TEST-NET-1 RFC 5737 192.88.99.0/24 6to4 Relay Anycast RFC 3068 192.168.0.0/16 Private-Use Networks RFC 1918 198.18.0.0/15 Network Interconnect Device Benchmark Testing RFC 2544 198.51.100.0/24 TEST-NET-2 RFC 5737 203.0.113.0/24 TEST-NET-3 RFC 5737 224.0.0.0/4 Multicast RFC 3171 240.0.0.0/4 Reserved for Future Use RFC 1112, Section 4 255.255.255.255/32 Limited Broadcast RFC 919, Section 7 RFC 922, Section 7 ------------- BUT your page says: " $cmd 00307 deny all from 204.152.64.0/23 to any in via $pif #Sun cluster interconnect $cmd 00308 deny all from 224.0.0.0/3 to any in via $pif #Class D & E multicast " but i see there's no 204.152.64.0 in RFC and there's block /4 not /3 please tell me what i don't understand? -----Reply ----------------------------------------------------------------- >> please tell me what i don't understand? CIDR addressing. 224.0.0.0/4 ==> 4 bits of network (1110) with 28 bits of mask 240.0.0.0/4 ==> 4 bits of network (1111) with 28 bits of mask These two adjacent netblocks can be represented by a single netblock for simplicity. 224.0.0.0/3 ==> 3 bits of network (111) with 29 bits of mask Matt _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"