From owner-freebsd-bugs Thu Mar 14 1:50:12 2002 Delivered-To: freebsd-bugs@hub.freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21]) by hub.freebsd.org (Postfix) with ESMTP id DC24537B41D for ; Thu, 14 Mar 2002 01:50:01 -0800 (PST) Received: (from gnats@localhost) by freefall.freebsd.org (8.11.6/8.11.6) id g2E9o1k16623; Thu, 14 Mar 2002 01:50:01 -0800 (PST) (envelope-from gnats) Received: from orion.ifmo.ru (kot.spb.ru [194.85.164.6]) by hub.freebsd.org (Postfix) with ESMTP id C989937B419 for ; Thu, 14 Mar 2002 01:44:38 -0800 (PST) Received: (from dima@localhost) by orion.ifmo.ru (8.11.6/8.11.6) id g2E9iMg77205; Thu, 14 Mar 2002 12:44:22 +0300 (MSK) (envelope-from dima) Message-Id: <200203140944.g2E9iMg77205@orion.ifmo.ru> Date: Thu, 14 Mar 2002 12:44:22 +0300 (MSK) From: Dmitry Afanasiev Reply-To: Dmitry Afanasiev To: FreeBSD-gnats-submit@FreeBSD.org X-Send-Pr-Version: 3.113 Subject: kern/35887: ipfw(8) limit feature does not work propertly Sender: owner-freebsd-bugs@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org >Number: 35887 >Category: kern >Synopsis: ipfw(8) limit feature does not work propertly >Confidential: no >Severity: serious >Priority: medium >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Thu Mar 14 01:50:01 PST 2002 >Closed-Date: >Last-Modified: >Originator: Dmitry Afanasiev >Release: FreeBSD 4.5-STABLE i386 >Organization: n/a >Environment: System: FreeBSD orion 4.5-STABLE FreeBSD 4.5-STABLE #8: Fri Mar 8 01:48:57 MSK 2002 root@orion:/usr/obj/usr/src/sys/MATPOCKuH i386 >Description: When I use rule allow tcp from any to 192.168.1.1 8800 limit src-addr 3 setup and has over 100 simulation connections, I get the log's entries and some-times missworking limit: Mar 14 12:39:59 orion /kernel: OUCH! cannot remove rule, count 1 Mar 14 12:39:59 orion /kernel: OUCH! cannot remove rule, count 1 Mar 14 12:39:59 orion /kernel: OUCH! cannot remove rule, count 2 Mar 14 12:40:13 orion /kernel: OUCH! cannot remove rule, count 2 Mar 14 12:40:13 orion /kernel: OUCH! cannot remove rule, count 1 Mar 14 12:40:13 orion /kernel: OUCH! cannot remove rule, count 1 Mar 14 12:40:13 orion /kernel: OUCH! cannot remove rule, count 2 Mar 14 12:40:13 orion /kernel: OUCH! cannot remove rule, count 1 Mar 14 12:40:30 orion /kernel: OUCH! cannot remove rule, count 2 Mar 14 12:40:30 orion /kernel: OUCH! cannot remove rule, count 1 Mar 14 12:40:33 orion /kernel: OUCH! cannot remove rule, count 1 Mar 14 12:40:33 orion /kernel: OUCH! cannot remove rule, count 2 Mar 14 12:40:33 orion /kernel: OUCH! cannot remove rule, count 1 Mar 14 12:40:33 orion /kernel: OUCH! cannot remove rule, count 2 Mar 14 12:40:41 orion /kernel: OUCH! cannot remove rule, count 1 Mar 14 12:40:41 orion /kernel: OUCH! cannot remove rule, count 1 Mar 14 12:40:41 orion /kernel: OUCH! cannot remove rule, count 3 Mar 14 12:40:44 orion /kernel: OUCH! cannot remove rule, count 1 Mar 14 12:40:44 orion /kernel: OUCH! cannot remove rule, count 2 Mar 14 12:40:44 orion /kernel: OUCH! cannot remove rule, count 3 >How-To-Repeat: ifconfig ed0 alias 192.168.1.1 ipfw add 22000 allow tcp from any to 192.168.1.1 8800 setup limit src-addr 3 >Fix: >Release-Note: >Audit-Trail: >Unformatted: To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message