ipf & icmp pakety - kde je problem ?

Brano Vislocky brano at zmail.sk
Wed Jul 17 16:36:20 CEST 2002

Previous message: ipf & icmp pakety - kde je problem ?
Next message: ipf & icmp pakety - kde je problem ?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Juraj Lutter wrote:
> On Wed, Jul 17, 2002 at 04:05:42PM +0200, Brano Vislocky wrote:
> 
>>Ahojte,
>>block  in log on ep1 all head 1
>>pass in quick on ep1 proto icmp from any to 1.2.3.4/32 icmp-type 0 group 1
>>pass in quick on ep1 proto icmp from any to 1.2.3.4/32 icmp-type 11 group 1
>>
>>
>>predpokladam, ze 1. riadok je 'default' pravidlo pre group 1
>>
>>no a problem je ten, ze ked ping-ujem kartu ep1, tak sa mi v logoch 
>>objavi take nieco:
>>
>>ipmon: 15:05:40.992524 ep1 @0:6 b x.x.x.x -> 1.2.3.4 PR icmp len 20 84 
>>icmp echo/0 IN
> 
> 
> co takto skusit pridat 'keep state' k pass in?
> 
> otis
> 

to som uz skusal, ale nepomohlo. zaujimave je, ze ked som pridal na 
koniec skupiny pravidlo,

pass in quick on ep1 proto icmp from any to 1.2.3.4/32 group 1

tak to chodi :(

hmmm, este som zabudol, mam FreeBSD 4.6-RELEASE-p1 z 26.juna 2002

ipf -V
ipf: IP Filter: v3.4.27 (336)
Kernel: IP Filter: v3.4.27


Brano

Previous message: ipf & icmp pakety - kde je problem ?
Next message: ipf & icmp pakety - kde je problem ?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Users-l mailing list