[prev in list] [next in list] [prev in thread] [next in thread]
List: ipfilter
Subject: NetBSD 1.3 ipf
From: "Michael C. Richardson" <mcr () sandelman ! ottawa ! on ! ca>
Date: 1998-01-27 19:10:00
[Download RAW message or body]
-----BEGIN PGP SIGNED MESSAGE-----
I'm running the IPF with NetBSD 1.3 (beta). (One question is: how do I
determine the cooresponding IPF release? ipf -v, ipf -V don't work...)
My parse.c has:
static char sccsid[] ="@(#)parse.c 1.44 6/5/96 (C) 1993-1996 Darren Reed";
static char rcsid[] = "Id: parse.c,v 2.0.2.14 1997/08/26 12:54:07 darrenr Exp ";
Anyway, I'm trying a rule like:
pass in quick from any to 209.151.24.2 port = domain keep state
expecting an implicit "proto tcp/udp" (according to the man page). I get a
complaint:
Can only use keep with UDP/ICMP/TCP
Okay, I try:
pass in quick proto tcp/udp from any to 209.151.24.33 port = domain keep \
state
and I get a complaint:
no protocol given for TCP/UDP comparisons
It appears that in parse.c, line 289, that fil.fr_proto is never
initialized to anything, so line 479 bitches.
I think that line 1055 bitches because "fr_ip.fi_fl" isn't initialized
with FI_TCPUDP.
Comments? Or am I just out-of-date? Did this change in the 1.3 release? The
work around is to just use multiple rules.
:!mcr!: | Sandelman Software Works Corporation, Ottawa, ON
Michael Richardson |Network and security consulting and contract programming
Personal: <A HREF="http://www.sandelman.ottawa.on.ca/People/Michael_Richardson/Bio.html">mcr@sandelman.ottawa.on.ca</A>. \
PGP key available. Corporate: <A \
HREF="http://www.sandelman.ottawa.on.ca/SSW/">sales@sandelman.ottawa.on.ca</A>.
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: latin1
Comment: Processed by Mailcrypt 3.4, an Emacs/PGP interface
iQB1AwUBNM4xBtiXVu0RiA21AQGRkgMAg8PhRwI4u4XtW0aoq294IyacHl8dvdFu
3Ccb3iJaE23ptPGZX/4r0jL1CdW2/QYabT7xShBCWqBPGtbhSozjpXfHt9rWOuSA
3SQj2XD6k6qKyBFw6Vr+I9jPBGg09dgr
=e6Mb
-----END PGP SIGNATURE-----
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic