Date: Thu, 6 Sep 2007 22:39:36 +0200 From: Gergely CZUCZY <phoemix@harmless.hu> To: freebsd-pf@freebsd.org Subject: duplicate rule on :broadcast Message-ID: <20070906203936.GA7448@harmless.hu>
index | next in thread | raw e-mail
[-- Attachment #1 --] Hello I've got a configuration when i've got 2 IPs on em0 from the very same subnet. This means, they have the same broadcast address. I have the following rule in my pf.conf: block in quick on $if_inet proto udp from any to $if_inet:broadcast port 137 label "broadcast deny" Since I've got two addresses on that interface it expands to the folowing accordin got ptfctl -sr: block return in quick on em0 inet proto udp from any to 195.56.55.255 port = netbios-ns label "broadcast deny" block return in quick on em0 inet proto udp from any to 195.56.55.255 port = netbios-ns label "broadcast deny" Is it really neccessery to have duplicates when the boradcast addresses of the assigned addresses are the very same? Sincerely, Gergely Czuczy mailto: gergely.czuczy@harmless.hu -- Weenies test. Geniuses solve problems that arise. [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (FreeBSD) owHFVL1rFEEUz5fNiEVqCx9BCGh2vbtkL5eTI8JF4zUqGLAQkdndt7eDuzPrzGyS jU0aMUUKsVJsUtkJES1FQQvBwn/ARltBCwtr3+7lLqbQ1m5m3tv3+5jf7MMTk2MT 05/2X908u/vo6fjzyZ/+mTS3VvadlOt1IZ16rVZ3FhcWWs6840U1v9XERn2xtYQt v3bpC+50lbQorbNWZNgGi5v2XJZwIc9DEHNt0HZyGzktNuxbESZTRlihZBuETITE UW1Nc2ki1M5FGahQyH4b7ubKYuhkWkjL/QQZu4xJohjrza4j9JUFDoGSkejnmpdD YSNGCWJYbUDvmgE6xrTGOs2mVinYGGEddQGGpwgm9yVaF9ZiYSBFYjBXdhQQc5pB K1a1+VrxMOCGAMNQozEu9EYtECkitUGMQedEUkhIC8git6TWZn6igjskltQIWhCb 0yK6TcotZFpZBXmYQVRS47IA2g/L7UPUTGkL9fkOW4SE+5jAzGEtRFnMMHZdyABh ZIzdUEOuWFlgY26JhUUdcWoUluFmxmVoSsgDFQMRPAiUpguo5mQ2CmwCjtFDJRpt ruURQWQv/ENQfclzvabreW7D8wZaOqwzvwL0iS+UcaT5m6z/AMl6htwhTJ4kBfUH QemhrsZWVx7mWSICbsnXKm5lSnyljwakND2qfOXGiL7E8I8K14NsjXK4fHB/GpNi jrFV1H1aQXcrD7YKlnKRWNWG/uDYDarjC/TC0qTMYpwz5jidRo3dQJSCAIgbhXqV NnmJZ1RCvMkpekOpGUSBa2HQZTvLk8fGyqc8/A1MT+y+Hdt78Gzb6z7exu77Xz++ 3p+69+L4u+9jT8Zff/728cObKX7l1stTUbx/8urs3m8= =FQOA -----END PGP SIGNATURE-----home | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070906203936.GA7448>