Добрый день всем.
Имеем FreeBSD 8.2+ipfw, правила следующие:

# ipfw list
00100 allow ip from any to any via lo0
00200 deny ip from any to 127.0.0.0/8
00300 deny ip from 127.0.0.0/8 to any
00400 deny ip from any to ::1
00500 deny ip from ::1 to any
00600 allow ipv6-icmp from :: to ff02::/16
00700 allow ipv6-icmp from fe80::/10 to fe80::/10
00800 allow ipv6-icmp from fe80::/10 to ff02::/16
00900 allow ipv6-icmp from any to any ip6 icmp6types 1
01000 allow ipv6-icmp from any to any ip6 icmp6types 2,135,136
01100 allow ip from any to any via lo0
01200 check-state
01300 divert 8668 tcp from 192.168.0.0/16 to any dst-port 22,25,110,143,465,587,993,995,7000,7001,7005 out xmit bce1 recv bce0 keep-state
01400 divert 8668 udp from 192.168.0.0/16 to any dst-port 7000,7001,7005 out xmit bce1 recv bce0 keep-state
01500 divert 8668 ip from 192.168.89.8,192.168.89.254 to any out xmit bce1 recv bce0 keep-state
01600 allow ip from 192.168.0.0/16 to 192.168.0.0/16 via bce0 setup keep-state
01700 allow ip from XXX.XXX.XXX.XXX/27 to XXX.XXX.XXX.XXX/27 via bce2 setup keep-state
01800 allow ip from XXX.XXX.XXX.XXX/27 to any out xmit bce1 setup keep-state
01900 allow ip from any to YYY.YYY.YYY.YYY dst-port 2601,2604 in recv bce1 setup keep-state
02000 allow tcp from any to XXX.XXX.XXX.XXX/27 dst-port 22 setup keep-state
02100 allow ip from any to any out xmit bce1 setup keep-state
02200 allow ip from any to any out xmit bce0 setup keep-state
02300 allow ip from any to XXX.XXX.XXX.66 dst-port 53 keep-state
02400 allow tcp from any to XXX.XXX.XXX.68 dst-port 20,21,80,443 setup keep-state
02500 allow tcp from any to XXX.XXX.XXX.69 dst-port 443,5222,5223 setup keep-state
02600 allow icmp from any to any keep-state
02700 deny log ip from any to any

IPFW работает, но ругается в консоль:
ipfw: ipfw_install_state: entry already present, done

В чём я не прав?