Denied broadcast packets in same interface with antispoofing
Lefteris Tsintjelis
lefty at ene.asda.gr
Thu Mar 24 05:34:10 PST 2005
Why are broadcast packets originating from the same interface denied
access? Is this normal behavior or am I missing something here?
FreeBSD 5.4-PRERELEASE #0: Thu Mar 17 16:41:58 EET 2005
${fwcmd} add 400 deny log ip from any to any not antispoof in
rl2: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
inet 192.168.0.97 netmask 0xffffffe0 broadcast 192.168.0.127
/var/log/security:
ipfw: 400 Deny ICMP:8.0 192.168.0.97 192.168.0.96 in via rl2
ipfw: 400 Deny ICMP:8.0 192.168.0.97 192.168.0.96 in via rl2
ipfw: 400 Deny ICMP:8.0 192.168.0.97 192.168.0.127 in via rl2
ipfw: 400 Deny ICMP:8.0 192.168.0.97 192.168.0.127 in via rl2
ipfw: 400 Deny UDP 192.168.0.97:123 192.168.0.127:123 in via rl2
Thanks in advance,
Lefteris Tsintjelis
More information about the freebsd-ipfw
mailing list