Date: Tue, 07 Sep 2004 09:19:52 +0200 From: Ian FREISLICH <if@hetzner.co.za> To: George S <c0sine@yahoo.com> Cc: freebsd-net@freebsd.org Subject: Re: ipfw dynamic tcp rule issue Message-ID: <E1C4aGe-0005bD-00@hetzner.co.za> In-Reply-To: Message from George S <c0sine@yahoo.com> <20040906173545.91306.qmail@web40413.mail.yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
George S wrote: > Hello all, > > I've been having some trouble with this strange ipfw configuration and I am > pretty sure it is probably a bug. I posted a note to freebsd-ipfw a little > while ago, but I think the problem is better demonstrated with a figure. Are you sure that you perormed the test you described and the results (count updated etc) actually occured? I would expect rule 9 to catch the packet on its way back and rule 11 never to be triggered. Maybe rule 9 should be a checkstate rule. Ian -- Ian Freislich
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?E1C4aGe-0005bD-00>