Date: Wed, 8 Dec 1999 10:39:36 -0500 From: Ben WIlliams <williamsl@Home.Com> To: freebsd-ipfw@FreeBSD.ORG Subject: divert rules Message-ID: <10444.991208@Home.Com>
next in thread | raw e-mail | index | archive | help
freebsd-ipfw, Wednesday, December 08, 1999
Hi all! I have a question about some observed behaviour of ipfw and
I'd like to ask you all if it's right, proper, expected, etc. and why
since the man-page seems to indicate otherwise.
According to the ipfw man page:
"...
divert port Divert packets that match this rule to the di-
vert(4) socket bound to port port. The search ter-
minates.
...
If a packet matches more than one divert and/or tee rule, all but the
last are ignored.
..."
However when playing with divert rules on my natd box whenever I had
more than one divert rule -each- rule would be triggered. The effect
this had was to have multiple replies sent to any request the inside
boxes made. Is this the expected behaviour? (Doesn't seem that way to
me...) The divert rules were all together if that has anything to do
with it.
--
Ben mailto:williamsl@Home.Com
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ipfw" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?10444.991208>