Big tables deny pakets
AstraSerg
astraserg at proc.ru
Sun Feb 4 14:44:49 UTC 2007
Good day
I use big tables in my ipfw. There are some trables
gate# date ; ipfw show 2101 2102 2103
Sun Feb 4 17:07:01 MSK 2007
02101 97 5800 skipto 2102 ip from 192.168.122.17 to any
02102 150 10348 deny ip from table(64) to any
02103 0 0 skipto 2104 ip from 192.168.122.17 to any
gate#
gate# date ; ipfw show 2101 2102 2103
Sun Feb 4 17:07:29 MSK 2007
02101 102 6100 skipto 2102 ip from 192.168.122.17 to any
02102 155 10648 deny ip from table(64) to any
02103 0 0 skipto 2104 ip from 192.168.122.17 to any
gate#
Why counter 2103 not rgowing?
gate# ipfw table 64 list | grep 192.168.122
192.168.122.2/32 0
192.168.122.5/32 0
192.168.122.15/32 0
192.168.122.16/32 0
192.168.122.131/32 0
192.168.122.135/32 0
192.168.122.146/32 0
gate#
and
gate# ipfw table 64 list | grep -v /32
gate#
gate# uname -a
FreeBSD gate.proc.ru 6.2-PRERELEASE FreeBSD 6.2-PRERELEASE #1: Tue Oct 10
21:48:09 MSD 2006
Thanks
More information about the freebsd-ipfw
mailing list