Bug 64534

Summary:

misfitting in two parts of man 8 ipfw about quantity of ports that may be specified in a rule

Product:

Documentation

Reporter:

Dmitry Cherkasov <chd>

Component:

Books & Articles

Assignee:

Maxim Konovalov <maxim>

Status:

Closed FIXED

Severity:

Affects Only Me

Priority:

Normal

Version:

Latest

Hardware:

Any

OS:

Any

Attachments:

Description	Flags
ipfw.8-patch	none

Description Dmitry Cherkasov 2004-03-21 11:20:12 UTC

	

	There is a misfitting in two parts of man 8 ipfw about 
	quantity of ports that may be specified in a rule. 
	In the Section RULE BODY in the description of 'ports' 
	pattern it is said:

	"The length of the port list is limited to 30 ports or ranges, ..."

	while later in the Section IPFW2 ENHANCEMENTS, subsection "Port 
	specifications" it is mentioned a different length of the port 
	list:

	"ipfw1 ... is limited to 10 entries instead of the 15 allowed 
	by ipfw2."

Fix: 

Probably "15" should be changed to "30" in the second cite.
How-To-Repeat: 	man ipfw | grep "is limited to"

Comment 1 Marc Silver 2004-03-23 14:14:00 UTC

Hey there,

I've confirmed that this is indeed correct.  IPFW2 is limited to 30 
ports/ranges, and returns 'ipfw: getsockopt(IP_FW_ADD): Invalid 
argument' when trying to use more than 30, while IPFW1 complains more 
gracefully with 'ipfw: too many ports (max is 10)' when trying to use 
more than 10.

Here's a patch for ipfw.8 which hopefully corrects the problem.

Cheers,
Marc

Comment 2 Maxim Konovalov freebsd_committer

2004-03-26 19:09:35 UTC

State Changed
From-To: open->patched

Fixed in -CURRENT, thanks.

Comment 3 Maxim Konovalov freebsd_committer

2004-03-26 19:09:35 UTC

Responsible Changed
From-To: freebsd-doc->maxim

MFC reminder.

Comment 4 Maxim Konovalov freebsd_committer

2004-04-05 20:34:04 UTC

State Changed
From-To: patched->closed

Fixed in -STABLE as well.