Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 21 Dec 2006 20:53:07 +0100
From:      =?UTF-8?B?VsOhY2xhdiBIYWlzbWFu?= <V.Haisman@sh.cvut.cz>
To:        Kevin Downey <redchin@gmail.com>
Cc:        stable@freebsd.org
Subject:   Re: Duplicate IPFW rules
Message-ID:  <458AE623.4070701@sh.cvut.cz>
In-Reply-To: <1d3ed48c0612211144s631e2cendbfcfb6acfae9ef1@mail.gmail.com>
References:  <458AD815.3010601@sh.cvut.cz> <1d3ed48c0612211144s631e2cendbfcfb6acfae9ef1@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help 

[-- Attachment #1 --]


Kevin Downey wrote, On 21.12.2006 20:44:
> 
> 
> On 12/21/06, *Václav Haisman* <V.Haisman@sh.cvut.cz
> <mailto:V.Haisman@sh.cvut.cz>> wrote:
> 
>     Hi,
>     I have just noticed that ipfw list shows one rule twice. It could be
>     that I
>     have run a script that adds it twice:
> 
>     shell::root:~> ipfw list
>     00100 allow ip from any to any via lo0
>     00200 deny ip from any to 127.0.0.0/8 <http://127.0.0.0/8>;
>     00300 deny ip from 127.0.0.0/8 <http://127.0.0.0/8>; to any
>     01999 deny ip from table(1) to any
>     01999 deny ip from table(1) to any
>     65000 allow ip from any to any
>     65535 allow ip from any to any
> 
>     Shouldn't IPFW check before adding the same rule number again?
> 
>     This is FreeBSD 6.1 RC1 with quite recent kernel.
> 
>     --
>     Vaclav Haisman
> 
> 
> 
> 
> its a feature, not a bug.
> 
Huh, really? How is it useful? Please, explain.

--
VH


[-- Attachment #2 --]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEVAwUBRYrmKkNOZDESBK8FAQL5UAf+N5iKQzmh5ffkQfin2Tl+D2y81dvggs2Z
/i1f+VL/b8Lsp0AvzzKZ4RlAHkEuNKDo77ykxEs0buynNbXAAATeJkgfFtyyg5F+
STfKeV3jRFLHddShb1RsCMhMYWuUNaL4DoTQk4YIWB02dJk+8VKpWiwya4cu3/rF
x/M1HtytbsNYRjt1T9JA6Br4uK0AQ46VcncuO26Uvd6ub+JrYaJmuyVnClDfg988
FimJQQNEaslGvJx4c9CaR2GqGKYlQsv+gdETk+BrLl/mDUMnlj+ReYg1iiA/4++e
yIF3ELkZbtZoQ2RFtfU8/X5Mfm2LfJAqayxKVyjFbNzWkRuwaFxsgQ==
=gIwR
-----END PGP SIGNATURE-----

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?458AE623.4070701>