'NetBSD 1.3 ipf'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ipfilter
Subject:    NetBSD 1.3 ipf
From:       "Michael C. Richardson" <mcr () sandelman ! ottawa ! on ! ca>
Date:       1998-01-27 19:10:00
[Download RAW message or body]

-----BEGIN PGP SIGNED MESSAGE-----


  I'm running the IPF with NetBSD 1.3 (beta). (One question is: how do I
determine the cooresponding IPF release? ipf -v, ipf -V don't work...)

  My parse.c has:

static	char	sccsid[] ="@(#)parse.c	1.44 6/5/96 (C) 1993-1996 Darren Reed";
static	char	rcsid[] = "Id: parse.c,v 2.0.2.14 1997/08/26 12:54:07 darrenr Exp ";

  Anyway, I'm trying a rule like:

pass  in quick         from any to 209.151.24.2      port = domain keep state

  expecting an implicit "proto tcp/udp" (according to the man page). I get a
complaint:
	Can only use keep with UDP/ICMP/TCP

  Okay, I try:

pass  in quick         proto tcp/udp from any to 209.151.24.33     port = domain keep \
state

  and I get a complaint:

no protocol given for TCP/UDP comparisons

  It appears that in parse.c, line 289, that fil.fr_proto is never
initialized to anything, so line 479 bitches.

  I think that line 1055 bitches because "fr_ip.fi_fl" isn't initialized
with FI_TCPUDP.

  Comments? Or am I just out-of-date? Did this change in the 1.3 release? The
work around is to just use multiple rules.

   :!mcr!:            |  Sandelman Software Works Corporation, Ottawa, ON  
   Michael Richardson |Network and security consulting and contract programming
 Personal: <A HREF="http://www.sandelman.ottawa.on.ca/People/Michael_Richardson/Bio.html">mcr@sandelman.ottawa.on.ca</A>. \
PGP key available.  Corporate: <A \
HREF="http://www.sandelman.ottawa.on.ca/SSW/">sales@sandelman.ottawa.on.ca</A>. 


-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: latin1
Comment: Processed by Mailcrypt 3.4, an Emacs/PGP interface

iQB1AwUBNM4xBtiXVu0RiA21AQGRkgMAg8PhRwI4u4XtW0aoq294IyacHl8dvdFu
3Ccb3iJaE23ptPGZX/4r0jL1CdW2/QYabT7xShBCWqBPGtbhSozjpXfHt9rWOuSA
3SQj2XD6k6qKyBFw6Vr+I9jPBGg09dgr
=e6Mb
-----END PGP SIGNATURE-----


[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic