ipfw's "or-blocks" feature isn't working?
Matthew Seaman
m.seaman at infracaninophile.co.uk
Mon May 12 01:41:16 PDT 2003
On Sun, May 11, 2003 at 11:01:41PM -0700, Darren Pilgrim wrote:
> In my ruleset I have a rule with an "or-block" in it:
>
> ipfw add pass tcp from \{ ${oip} or ${inet} \} to 192.168.100.1 80 keep-state
>
> But when ipfw loads the rules, it returns "ipfw: hostname ''{'' unknown". The
> man page says the syntax is fine, so I'm stumped. Can someone explain why this
> isn't working?
That's an IPFW2 feature. I guess you're using a fairly recent version
of FreeBSD 4.x, but you haven't recompiled your world with the IPFW2
support enabled?
See the sections "USING IPFW2 IN FreeBSD-STABLE" and "IPFW2
ENHANCEMENTS" in the ipfw(8) man page.
Cheers,
Matthew
--
Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks
Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey Marlow
Tel: +44 1628 476614 Bucks., SL7 1TH UK
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20030512/c8e6768c/attachment.bin
More information about the freebsd-questions
mailing list