Date: Thu, 10 Sep 2009 08:47:44 +0200 From: Luigi Rizzo <rizzo@iet.unipi.it> To: mkarjal <matti.karjalainen@nsn.com> Cc: freebsd-ipfw@freebsd.org Subject: Re: IPFW and SCTP port number Message-ID: <20090910064744.GA1149@onelab2.iet.unipi.it> In-Reply-To: <25377926.post@talk.nabble.com> References: <25377926.post@talk.nabble.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Sep 09, 2009 at 11:17:50PM -0700, mkarjal wrote: > > Hi, > > I'm trying to catch SCTP packets with IPFW by SCTP port numbers, should it > be working or not? > Or is there some different syntax for this? > > "ipfw add count sctp from any to any" works, counts all SCTP packets. > > "ipfw add count sctp from any 49606 to any" does not work. Counters show > zero reading. > > I have tried adding IP address, with different port ranges and combinations. > I have tested this with 7.2-RELEASE and 8.0-BETA3. i think at the moment ipfw is not parsing sctp headers so it does not fetch port numbers. cheers luigi
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20090910064744.GA1149>