forum.lissyara.su

Код: Выделить всё

gateway kernel: arp: 192.168.0.xxx is on vr0 but got reply from [xx:xx:xx:xx:xx:xx] on vr1

Код: Выделить всё

ipfw -q add 50 deny all from 192.168.0.0/24 to me in via vr1
ipfw -q add 60 deny all from 192.168.0.0/24 to 192.168.0.1 in via vr1
ipfw -q add 70 deny all from 192.168.0.1 to 192.168.0.0/24 out via vr1
ipfw -q add 80 deny all from 192.168.0.1 to 192.168.0.0/24 out via vr1

ipfw -q add 200 deny arp from 192.168.0.0/24 to any via vr1
ipfw -q add 210 deny udp from 192.168.0.0/24 to any via vr1
ipfw -q add 220 deny tcp from 192.168.0.0/24 to any via vr1

Код: Выделить всё

#arp -s xxx.xxx.xxx.xxx xx:xx:xx:xx:xx:xx

Код: Выделить всё

ipfw -q add  <номер> allow all from 192.168.0.0/24 to me via   vr0
ipfw -q add >номер + 1> deny all from 192.168.0.0/24 to me  via  vr1

Код: Выделить всё

#ipfw show
00070    0      0 deny ip from 192.168.0.1 to 192.168.0.0/24 out via vr1
00080    0      0 deny ip from 192.168.0.1 to 192.168.0.0/24 out via vr1
00210    0      0 deny udp from 192.168.0.0/24 to any via vr1
00220    0      0 deny tcp from 192.168.0.0/24 to any via vr1
00500  817 117614 allow ip from me to 10.0.0.1
00510 1284 365806 allow ip from 10.0.0.1 to me
01000  544 100059 divert 8668 ip from 192.168.0.0/24 to any out via ng0
01010  639 322696 divert 8668 ip from any to me in via ng0
01200    0      0 allow icmp from any to any icmptypes 0
01210   31   2120 allow icmp from any to any icmptypes 3
01220    0      0 allow icmp from any to any icmptypes 4
01230    0      0 allow icmp from any to any icmptypes 8
01240    0      0 allow icmp from any to any icmptypes 11
01250    0      0 allow icmp from any to any icmptypes 12
01310  301  60206 allow ip from 192.168.0.102 to any
01320  776 611016 allow ip from any to 192.168.0.102
01330  117   4728 allow ip from 192.168.0.103 to any
01340  184   7288 allow ip from any to 192.168.0.103
01400  162  37343 allow ip from 192.168.0.105 to any
01401  264  23552 allow ip from any to 192.168.0.105
10001  548 100335 allow ip from me to any
10002    0      0 allow tcp from any to me established
10610    0      0 allow udp from [dns1] 53 to me dst-port 53
10610    0      0 allow udp from [dns2] to me dst-port 53
10620    0      0 allow udp from me 53 to [dns1] dst-port 53
10620    0      0 allow udp from me 53 to [dns2] dst-port 53
11001    0      0 allow tcp from any to 84.227.164.132 dst-port 20,21
11002    0      0 allow tcp from 84.227.164.132 20,21 to any
11101    0      0 allow tcp from 192.168.0.0/16 to me dst-port 20,21 via vr0
11101    0      0 allow tcp from me 20,21 to 192.168.0.0/16 via vr0
20001    0      0 allow ip from 127.0.0.1 to any
20002    0      0 allow ip from any to 127.0.0.1
65535  553  35512 deny ip from any to any

Код: Выделить всё

Имя: 84.227.164.2
IP: 84.227.164.2

country: CH (Швейцарская Кофедерация)
address: sunrise , TDC Switzerland AG , sunrise Tower , Hagenholzstrasse 20/22 , CH - 8050 ZЭrich , Switzerland