Date: Wed, 16 Apr 2014 09:14:29 +0800 From: lhmwzy <lhmwzy@gmail.com> To: freebsd-questions@freebsd.org Subject: ipfw option `in` is not working on FreeBSD10 Message-ID: <CALL55gid81sS9H83kcq6wKi6=q42DKTnm6jSSWmMzJmGtDgXYw@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
Descriptionaccording to the man page, the rule option `in|out` are still supported in FreeBSD10. But somehow the rule with in did not match anything in my case.How-To-Repeatroot@FB10:~ # ipfw -f flush Flushed all rules. //Create rules <--------------------------------- root@FB10:~ # ipfw add count all from any to any MAC any any in via em0 00100 count ip from any to any MAC any any in via em0 root@FB10:~ # ipfw add count all from any to any MAC any any via em0 00200 count ip from any to any MAC any any via em0 //Check counters<----------------------------------- root@FB10:~ # ipfw show 00100 0 0 count ip from any to any MAC any any in via em0 00200 26 2232 count ip from any to any MAC any any via em0 65535 3453 293448 allow ip from any to any oot@FB10:~ # sysctl -a | grep net.link.ether.ipfw net.link.ether.ipfw: 1
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CALL55gid81sS9H83kcq6wKi6=q42DKTnm6jSSWmMzJmGtDgXYw>