From owner-freebsd-net Tue Feb 20 4:15:46 2001 Delivered-To: freebsd-net@freebsd.org Received: from fw.wintelcom.net (ns1.wintelcom.net [209.1.153.20]) by hub.freebsd.org (Postfix) with ESMTP id E90A737B491 for ; Tue, 20 Feb 2001 04:15:44 -0800 (PST) (envelope-from bright@fw.wintelcom.net) Received: (from bright@localhost) by fw.wintelcom.net (8.10.0/8.10.0) id f1KCFdV17621; Tue, 20 Feb 2001 04:15:39 -0800 (PST) Date: Tue, 20 Feb 2001 04:15:39 -0800 From: Alfred Perlstein To: =?iso-8859-1?Q?Andr=E9_Luiz_dos_Santos?= Cc: freebsd-net@FreeBSD.ORG Subject: Re: Finding what rule match on IPFW. Message-ID: <20010220041539.U6641@fw.wintelcom.net> References: <01021920392200.00796@nv12.netvision.com.br> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit User-Agent: Mutt/1.2.5i In-Reply-To: <01021920392200.00796@nv12.netvision.com.br>; from andre@netvision.com.br on Mon, Feb 19, 2001 at 08:39:22PM +0000 X-all-your-base: are belong to us. Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org * André Luiz dos Santos [010220 04:11] wrote: > > Is there a program that does for ipfw what "route get" does for the route > table? I couldn't find anything like the get option for route on ipfw. > I've too many ipfw rules on one machine here and finding where a certain > packet match is not very easy when looking rule by rule. I'm pretty sure you can play with the logging options while debugging and look at /var/log/security for it. -- -Alfred Perlstein - [bright@wintelcom.net|alfred@freebsd.org] "I have the heart of a child; I keep it in a jar on my desk." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message