From owner-freebsd-questions@FreeBSD.ORG Tue Jul 29 01:15:33 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7738E10657AA for ; Tue, 29 Jul 2008 01:15:32 +0000 (UTC) (envelope-from rfg@tristatelogic.com) Received: from segfault-outgoing-helo.tristatelogic.com (112.171-60-66-fuji-dsl.static.surewest.net [66.60.171.112]) by mx1.freebsd.org (Postfix) with ESMTP id A003C8FC2A for ; Tue, 29 Jul 2008 01:15:32 +0000 (UTC) (envelope-from rfg@tristatelogic.com) Received: from segfault-nmh-helo.tristatelogic.com (localhost [127.0.0.1]) by segfault.tristatelogic.com (Postfix) with ESMTP id 33A7611423 for ; Mon, 28 Jul 2008 18:15:32 -0700 (PDT) To: freebsd-questions@freebsd.org Date: Mon, 28 Jul 2008 18:15:32 -0700 Message-ID: <83072.1217294132@tristatelogic.com> From: "Ronald F. Guilmette" Subject: Two minor IPFW-related questions X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 29 Jul 2008 01:15:33 -0000 Just a couple of questions about IPFW-related things: 1) Somewhere the other day I read a recommendation... which looked rather official to me that the time... that all fragments should be firwalled out, e.g. thusly: deny any to any in frag Is that actually a Good Thing To Do? Are there really no legitimate packate fragments out there on the Internet? 2) What is the significance of the last three numbers in the following log line? What exactly does each one of them represent? Jul 28 00:00:13 segfault kernel: ipfw: 250 Deny UDP 192.228.91.19 66.60.171.112 in via rl0 (frag 60396:368@1480)