ipfw lookup dst-port na freebsd 8.4

Čiernik Tomáš tomas at ciernik.sk
Mon Jun 17 01:58:19 CEST 2013

Previous message: Openconnect - jak spoustet?
Next message: ipfw lookup dst-port na freebsd 8.4
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Dobry vecer prajem,

narazil som na problem v ipfw, ktory mi pripomina bug uvedeny na 
http://www.freebsd.org/cgi/query-pr.cgi?pr=175909 ,
ale toto sa mi deje na 8.4-RELEASE.

V sade pravidiel mam okrem ineho:

10000 allow log tcp from any to lookup dst-port 4 keep-state
10001 allow log tcp from any to any dst-port 22 keep-state


table 4 obsahuje

21 0
22 0


napriek tomu v logu vidno, ze ssh povoli az pravidlo 10001

kernel: ipfw: 10001 Accept TCP 192.168.10.1:50336 192.168.10.7:22 in via 
msk0


Pre uplnost prikladam vypis z uname

FreeBSD 8.4-RELEASE #1 r251822


Rad by som sa opytal, stretol sa s tym este niekto? Predtym nez to 
nahlasim by som sa rad uistil, ze nemam niekde chybu v konfiguracii.


Dakujem,

Tomas Ciernik.

Previous message: Openconnect - jak spoustet?
Next message: ipfw lookup dst-port na freebsd 8.4
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Users-l mailing list