IPFW and SCTP port number

View: New views

2 Messages — Rating Filter: Alert me

IPFW and SCTP port number

by mkarjal :: Rate this Message:

Reply to Author | View Threaded | Show Only this Message

Hi,

I'm trying to catch SCTP packets with IPFW by SCTP port numbers, should it be working or not?
Or is there some different syntax for this?

"ipfw add count sctp from any to any" works, counts all SCTP packets.

"ipfw add count sctp from any 49606 to any" does not work. Counters show zero reading.

I have tried adding IP address, with different port ranges and combinations. I have tested this with 7.2-RELEASE and 8.0-BETA3.

regards,
Matti

Re: IPFW and SCTP port number

by Luigi Rizzo-5 :: Rate this Message:

Reply to Author | View Threaded | Show Only this Message

On Wed, Sep 09, 2009 at 11:17:50PM -0700, mkarjal wrote:

>
> Hi,
>
> I'm trying to catch SCTP packets with IPFW by SCTP port numbers, should it
> be working or not?
> Or is there some different syntax for this?
>
> "ipfw add count sctp from any to any" works, counts all SCTP packets.
>
> "ipfw add count sctp from any 49606 to any" does not work. Counters show
> zero reading.
>
> I have tried adding IP address, with different port ranges and combinations.
> I have tested this with 7.2-RELEASE and 8.0-BETA3.

i think at the moment ipfw is not parsing sctp headers so it
does not fetch port numbers.

cheers
luigi
_______________________________________________
freebsd-ipfw@... mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw
To unsubscribe, send any mail to "freebsd-ipfw-unsubscribe@..."