Uid keyword matches only on loopack interface
Wiktor Niesiobedzki
bsd at w.evip.pl
Thu Nov 13 02:47:19 PST 2003
Hi,
After setting my firewall I saw that only few packets match the uid keyword.
>From my trival test came out that only loopack traffic can be matched. Is
there some bug lying in here?
The simple rule:
00395 0 0 count log tcp from any to any uid root
Will match only:
Nov 13 11:41:23 portal kernel: ipfw: 395 Count TCP 127.0.0.1:80
127.0.0.1:50780 out via lo0
Nov 13 11:41:23 portal kernel: ipfw: 395 Count TCP 127.0.0.1:50780
127.0.0.1:80 in via lo0
Nov 13 11:41:25 portal kernel: ipfw: 395 Count TCP 127.0.0.1:50780
127.0.0.1:80 out via lo0
That kind of traffic. Any traffic going by other interface is not counted.
uname -a
FreeBSD portal 5.1-CURRENT FreeBSD 5.1-CURRENT #1: Tue Nov 11 10:15:12 CET
2003 root at portal:/home/usr/obj/home/usr/src/sys/PORTAL i386
/sys/netinet/ip_fw2.c:
$FreeBSD: src/sys/netinet/ip_fw2.c,v 1.43 2003/11/07 23:26:57 sam Exp $
Cheers,
Wiktor Niesiobedzki
More information about the freebsd-ipfw
mailing list