ipfw question
freebsd at tern.ru
freebsd at tern.ru
Fri Feb 6 02:15:01 PST 2004
Dear All.
I want to use 'not' for 2 addresses (for both) in ipfw2 rule.
The only way that looks like what I need is
# ipfw add count from IP1 to not IP2,IP3
But does this rule indeed makes what I want? Does it count all
packets destined to addresses other then IP2 AND IP3?!
No other syntax works.
For example more logically correct
not IP2 AND not IP3
or even
not { IP2 or IP3 }
are understood by ipfw2
man does not contain the good description of this
Can somebody clear this up for me?
More information about the freebsd-security
mailing list