I am trying to do a simple test of matching mac coming from a machine connected to re0 and allowing it. I don't care if i'm able to actually use the packet, all I want is the rule number to show up in in /var/log/security so I know something is matching. The ipfw command I'm using is. But it keeps on missing the match. I am absolutely sure the mac I am using as source is the same characters. I know for sure that when I ping from the connected machine tcpdump -vvve on that machine and on the freebsd box that I'm doing this test on shows the mac as the source. What am I missing here? I know that if I useI have to make another rule withfor traffic to work properly, but again all I'm trying to do is get the rule to show up in /var/log/security, not actual usability.
ipfw add 10 allow log ip from any to any layer2 MAC any <mac address of source ethernet interface that's in the connected machine> keep-state out via re0