Subject: Re: Solution for duplicate ipf states?
To: Manuel Bouyer <bouyer@antioche.eu.org>
From: Monroe Williams <monroe@criticalpath.com>
List: tech-net
Date: 05/13/2002 20:05:35
on 5/13/02 2:06 PM, Manuel Bouyer at bouyer@antioche.eu.org wrote:

> Indeed I use it with the log option:
> pass out log first quick on ex0 proto icmp from any to any keep state

I just tried this rule.  Not only does it _not_ prevent multiple entries
from appearing in the state table, it doesn't even prevent every packet from
being logged.

I suspect that the answer to my problems is to upgrade to a later version of
ipf.  Since things are usable right now and this is a production firewall,
I'm planning to wait until the final release of 1.5.3.

Thanks,
-- monroe
------------------------------------------------------------------------
Monroe Williams                                  monroe@criticalpath.com