Date: Mon, 1 Dec 2008 23:51:40 +1100 (EST) From: Ian Smith <smithi@nimnet.asn.au> To: Brett Davidson <brett@net24.co.nz> Cc: freebsd-questions@freebsd.org Subject: Re: Is there anything weird I should know about using ipfw on alias addresses? Message-ID: <20081201233222.L34249@sola.nimnet.asn.au> In-Reply-To: <20081201120023.9E1821065688@hub.freebsd.org> References: <20081201120023.9E1821065688@hub.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 01 Dec 2008 16:52:12 +1300 Brett Davidson <brett@net24.co.nz> wrote: > ifconfig shows the alias addresses correctly bound. > Creating an ipfw rule and testing it from the command line works > (connects out from master address, not alias) > > From website on alias address, the firewall blocks the packets. > > The weird thing is that it tags them (in the security log) as coming > from the master address (not the alias) out the correct interface. In a > normal world that would mean the packet would match!!!!! > > What's goin' on here Willis? Difficult to tell without seeing a) ifconfig b) netstat -rn c) at least the relevant firewall rule/s and d) log entries that illustrate your problem. Obscure sensitive information by all means, but otherwise pretend we haven't the slightest clue how your system is configured :) cheers, Ian
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20081201233222.L34249>