Date: Tue, 27 May 2003 06:55:50 -0400 (EDT) From: wmoran@compunetix.com To: "Roger 'Rocky' Vetterberg" <listsub@401.cx> Cc: freebsd-questions@freebsd.org Subject: Re: Running Dummynet Message-ID: <1429.24.53.170.215.1054032950.squirrel@mail.compunetix.com> In-Reply-To: <3ED30DEB.3010805@401.cx> References: <20030524145328.16351.qmail@web13406.mail.yahoo.com> <3ECFA2E5.8020701@potentialtech.com> <3ED30DEB.3010805@401.cx>
next in thread | previous in thread | raw e-mail | index | archive | help
> Bill Moran wrote: >> Fehmi wrote: >> >>> ipfw show: >>> 100 allow ip from any to any >>> 200 pipe 1 bw 1kbit/s delay 200ms >>> 65554 deny ip from any to any >> >> >> This actually works? It looks to me like everything should be >> blocked by the last rule: thus no networking should work. > > I have to disagree. Everything will be *allowed* by the *first* rule, > none of the other rules will ever happen, including the last one. > This is pretty much as effective as no firewall at all. Agreed. I must have been asleep at the wheel when I looked at it. And you've also described the problem to the orignal poster.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1429.24.53.170.215.1054032950.squirrel>