Return to BSD News archive
Path: euryale.cc.adfa.oz.au!newshost.anu.edu.au!harbinger.cc.monash.edu.au!news.cs.su.oz.au!metro!metro!asstdc.scgt.oz.au!nsw.news.telstra.net!act.news.telstra.net!vic.news.telstra.net!news.mira.net.au!inquo!in-news.erinet.com!bug.rahul.net!rahul.net!a2i!ns2.mainstreet.net!news.us.world.net!news.aus.world.net!shellbne.bluesky.net.au!matt From: matt@shellbne.bluesky.net.au (Matt Carter) Newsgroups: comp.unix.bsd.netbsd.misc Subject: ipfw (ip firewall/accounting) Date: 1 May 1996 04:20:29 GMT Organization: AUSNet Services pty. ltd. Lines: 28 Message-ID: <4m6oqd$k43@sydney1.world.net> NNTP-Posting-Host: shellbne.bluesky.net.au X-Newsreader: TIN [version 1.2 PL2] okay heres my problem techbne02-----\ /----shellbne |/ outsideworld--------router-----hub-----bluesky1 |\ techbne01-----/ \----accbne01 okay - now everything past and including the router are all on the same subnet and since they are on the same hub hence the same network. ipfw works fine except for one slight problem. shellbne is the freebsd machine running ipfw . if i tell it to filter and logreject all icmp packets from anywhere 0.0.0.0/0 to our subnet 203.21.76.0/24 then if i'm not mistaken it should drop packets for any of the above hosts, except for the router? why does it only drop packets for itself and no other hosts when the other hosts are on a direct network and only 1 hop away ? -- ////////////////////////////////////////////////////////////////////////////// Matt Carter, BlueSky OPC Pty. Ltd. Phone: +61 (07) 3344-5779, FAX: +61 (07) 3344-5739 E-mail: matt@BlueSky.net.au WWW: http://www.BlueSky.net.au //////////////////////////////////////////////////////////////////////////////