[aux]

Does OS X reset the ipfw counters when a machine acquires DHCP-assigned IP address?
I noticed some strange ipfw behavior that I can't explain by anything else.

[ghporter]

I can't find anything specific about ipfw's behavior with a DHCP-assigned address, but it seems logical that it might reset counters based on all new addresses. What kind of behavior are you seeing?

[besson3c]

What do you mean by the ipfw counters?

[aux]

Originally Posted by besson3c 

What do you mean by the ipfw counters?

ipfw creates counters for each rule, one can see the counter values with

ipfw show

Originally Posted by ghporter 

I can't find anything specific about ipfw's behavior with a DHCP-assigned address, but it seems logical that it might reset counters based on all new addresses. What kind of behavior are you seeing?

This happens only if I start the machine with no network available and then connect the network cable so that the machine gets IP address by DHCP. Before connecting the cable, the counters are zero, which is expected. After connecting the cable, some of the counters start increasing, which also is normal. However several seconds after the machine gets IP address, the counters are somehow reset to 0, which is strange. Some time after that, they start increasing again.

This doesn't happen if the machine has static IP address and starts with no network available. It doesn't happen if it starts when connected to the network (regardless of whether the IP address is static or DHCP-assigned). On a second thought -- it may happen, but I can't see it because it happens during startup.

The only thing that I can think of is that OS X resets the rules when the IP address changes or when the machines acquires new IP address.

Any ideas are welcome

[aux]

bump