[Bug 240650] ipfw(8): Check for IPv4 in add_src() and add_dat, don't assume !IPv6 is IPv4
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Wed Mar 11 15:22:00 UTC 2020
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=240650
--- Comment #7 from Neel Chauhan <neel at neelc.org> ---
This patch works for me:
root at tiny:/home/neel # ipfw add 2000 deny all from me to any 22
02000 deny ip from me to any 22
root at tiny:/home/neel # telnet neelc.org 22
Trying 66.42.69.219...
telnet: connect to address 66.42.69.219: Permission denied
Trying 2001:19f0:8001:fed:5400:2ff:fe73:c622...
telnet: connect to address 2001:19f0:8001:fed:5400:2ff:fe73:c622: No route to
host
telnet: Unable to connect to remote host
root at tiny:/home/neel # ipfw del 2000
ipfw: DEPRECATED: 'del' matched 'delete' as a sub-string
root at tiny:/home/neel # telnet neelc.org 22
Trying 66.42.69.219...
Connected to neelc.org.
Escape character is '^]'.
SSH-2.0-OpenSSH_7.8 FreeBSD-20180909
^]
telnet> quit
Connection closed.
root at tiny:/home/neel #
Can you give me an example of your ipfw script?
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-ipfw
mailing list