ipf / problem with rules removing and duplication
Hi,
I observe a problem with ipfilter - command /usr/sbin/ipf not working as expected. Problem has place on Solaris 11 for SPARC and I observe it on clear Solaris 11.1 installation (version of ipfilter pkg is 0.175.1.0.0.24.2) and also with last SRU applied (version of ipfilter pkg is 0.175.1.12.0.3.2).
The problem is adding and removing some rules with /usr/sbin/ipf command.
1.) I cannot remove some rules with "ipf -r"
example:
# ipfstat -i
block in quick on net1 proto tcp from 1.1.1.1/32 to 2.2.2.2/32 port = 3333
# echo "block in quick on net1 proto tcp from 1.1.1.1 to 2.2.2.2/32 port = 3333" | /usr/sbin/ipf -rf -
# ipfstat -i
block in quick on net1 proto tcp from 1.1.1.1/32 to 2.2.2.2/32 port = 3333
I observe a problem with ipfilter - command /usr/sbin/ipf not working as expected. Problem has place on Solaris 11 for SPARC and I observe it on clear Solaris 11.1 installation (version of ipfilter pkg is 0.175.1.0.0.24.2) and also with last SRU applied (version of ipfilter pkg is 0.175.1.12.0.3.2).
The problem is adding and removing some rules with /usr/sbin/ipf command.
1.) I cannot remove some rules with "ipf -r"
example:
# ipfstat -i
block in quick on net1 proto tcp from 1.1.1.1/32 to 2.2.2.2/32 port = 3333
# echo "block in quick on net1 proto tcp from 1.1.1.1 to 2.2.2.2/32 port = 3333" | /usr/sbin/ipf -rf -
# ipfstat -i
block in quick on net1 proto tcp from 1.1.1.1/32 to 2.2.2.2/32 port = 3333
0