Netgate SG-1000 microFirewall

Author Topic: Great work and a small finding: illegal IP configuration possible  (Read 1661 times)

0 Members and 1 Guest are viewing this topic.

Offline aferret

  • Newbie
  • *
  • Posts: 1
  • Karma: +0/-0
    • View Profile
Hello there

I just gave pfsense (1.2.2) a try and am very happy with the product. Great work!

While playing around trying this and that, I noticed it is possible to configure the interfaces with an illegal IP address, e.g. network address (192.168.0.0/24, 172.16.16.0/24 et cetera). And box does - with an according rule - answer to ICMP echo requests to this configured IP address as well, when it receives such.

Would be nice, if IP address / subnetmask are checked for being legitimate, warn and/or prevent configuration accordingly.
« Last Edit: March 31, 2009, 11:34:20 am by aferret »