From owner-freebsd-questions@FreeBSD.ORG Mon Jan 1 14:38:25 2007 Return-Path: X-Original-To: questions@freebsd.org Delivered-To: freebsd-questions@FreeBSD.ORG Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 0143F16A40F for ; Mon, 1 Jan 2007 14:38:25 +0000 (UTC) (envelope-from infofarmer@gmail.com) Received: from nf-out-0910.google.com (nf-out-0910.google.com [64.233.182.189]) by mx1.freebsd.org (Postfix) with ESMTP id 902EB13C457 for ; Mon, 1 Jan 2007 14:38:24 +0000 (UTC) (envelope-from infofarmer@gmail.com) Received: by nf-out-0910.google.com with SMTP id x37so6471423nfc for ; Mon, 01 Jan 2007 06:38:13 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:sender:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; b=Jqvn7wPtyUcOemxZNNNH5izubpc45Q3EcHcvk1MyVZrUsZB2J9rYtnUWWwQWxOUkBM3hGkVF8kIivtCqF3hPShan/5w+j4P7JHgMX5GUhvJX8Rx6eKZ2qBDwI5OG6UDC9ZVUpPndWA+lJ4EoRCyOf2kdT0WfJ0b7CvGjYq3wAAM= Received: by 10.78.134.12 with SMTP id h12mr4439936hud.1167662293301; Mon, 01 Jan 2007 06:38:13 -0800 (PST) Received: by 10.78.164.20 with HTTP; Mon, 1 Jan 2007 06:38:13 -0800 (PST) Message-ID: Date: Mon, 1 Jan 2007 17:38:13 +0300 From: "Andrew Pantyukhin" Sender: infofarmer@gmail.com To: "Grant Peel" In-Reply-To: <001901c72db0$4a343d20$6501a8c0@GRANT> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <001901c72db0$4a343d20$6501a8c0@GRANT> X-Google-Sender-Auth: 10add40c52a7cfc8 Cc: questions@freebsd.org Subject: Re: ipfw counters X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 01 Jan 2007 14:38:25 -0000 On 1/1/07, Grant Peel wrote: > Hi all, > > If I have rules like: > > 10215 0 0 count ip from any to 1.2.3.4 via em0 > 10215 0 0 count ip from 1.2.3.4 to any via em0 > > in my ipfw rules, will the rules also count what is sent > from those IPs to the localhost (127.0.0.1).? > > ((I am guessing NO, but wanted a second opinion). 127.0.0.1 should only be reachable via lo0, but I can imagine a packet coming from em0 if you omit the usual protection rules (see stock rc.firewall).