Date: Mon, 1 Jan 2007 17:38:13 +0300 From: "Andrew Pantyukhin" <infofarmer@FreeBSD.org> To: "Grant Peel" <gpeel@thenetnow.com> Cc: questions@freebsd.org Subject: Re: ipfw counters Message-ID: <cb5206420701010638n2eb7b521kba44f1bfd806f968@mail.gmail.com> In-Reply-To: <001901c72db0$4a343d20$6501a8c0@GRANT> References: <001901c72db0$4a343d20$6501a8c0@GRANT>
next in thread | previous in thread | raw e-mail | index | archive | help
On 1/1/07, Grant Peel <gpeel@thenetnow.com> wrote: > Hi all, > > If I have rules like: > > 10215 0 0 count ip from any to 1.2.3.4 via em0 > 10215 0 0 count ip from 1.2.3.4 to any via em0 > > in my ipfw rules, will the rules also count what is sent > from those IPs to the localhost (127.0.0.1).? > > ((I am guessing NO, but wanted a second opinion). 127.0.0.1 should only be reachable via lo0, but I can imagine a packet coming from em0 if you omit the usual protection rules (see stock rc.firewall).
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?cb5206420701010638n2eb7b521kba44f1bfd806f968>