From owner-cvs-src@FreeBSD.ORG Sun Mar 9 20:16:30 2008 Return-Path: Delivered-To: cvs-src@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3D08A1065674; Sun, 9 Mar 2008 20:16:30 +0000 (UTC) (envelope-from piso@southcross.wired.org) Received: from mail.oltrelinux.com (krisma.oltrelinux.com [194.242.226.43]) by mx1.freebsd.org (Postfix) with ESMTP id E2EFF8FC1A; Sun, 9 Mar 2008 20:16:29 +0000 (UTC) (envelope-from piso@southcross.wired.org) Received: from southcross.wired.org (host-84-221-107-225.cust-adsl.tiscali.it [84.221.107.225]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.oltrelinux.com (Postfix) with ESMTP id B065111AE75; Sun, 9 Mar 2008 21:16:29 +0100 (CET) Received: (from piso@localhost) by southcross.wired.org (8.14.2/8.14.1/Submit) id m29KJuZU051768; Sun, 9 Mar 2008 21:19:56 +0100 (CET) (envelope-from piso) Date: Sun, 9 Mar 2008 21:19:55 +0100 From: Paolo Pisati To: "HM Eng.Prowip" Message-ID: <20080309201955.GA51679@tin.it> References: <200802292227.m1TMRJwb013420@repoman.freebsd.org> <200803091416.45296.eng@prowip.net.br> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <200803091416.45296.eng@prowip.net.br> User-Agent: Mutt/1.5.17 (2007-11-01) X-Virus-Scanned: by amavisd-new-20030616-p10 (Debian) at krisma.oltrelinux.com Cc: cvs-src@freebsd.org, Paolo Pisati Subject: Re: cvs commit: src/sys/conf NOTES files src/sys/modules/ipfw_nat Makefile src/sys/netinet ip_fw.h ip_fw2.c ip_fw_nat.c X-BeenThere: cvs-src@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: CVS commit messages for the src tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 09 Mar 2008 20:16:30 -0000 On Sun, Mar 09, 2008 at 02:16:45PM -0300, HM Eng.Prowip wrote: > > Move ipfw's nat code into its own kld: ipfw_nat. > > > > Revision Changes Path > > 1.1469 +1 -2 src/sys/conf/NOTES > > 1.1272 +1 -0 src/sys/conf/files > > 1.1 +8 -0 src/sys/modules/ipfw_nat/Makefile (new) > > 1.112 +32 -0 src/sys/netinet/ip_fw.h > > 1.182 +54 -552 src/sys/netinet/ip_fw2.c > > 1.1 +646 -0 src/sys/netinet/ip_fw_nat.c (new) > > _______________________________________________ > > > > since this update I get constant > > Mar 9 14:06:27 gw kernel: ipfw: install_state: entry already present, done > Mar 9 14:06:30 gw kernel: ipfw: install_state: entry already present, done > > in my log > I do not use nat > > what does this mean? uhm... i dont' see how this could happen: ip_fw2::install_state() q = lookup_dyn_rule_locked(&args->f_id, NULL, NULL); if (q != NULL) { /* should never occur */ if (last_log != time_uptime) { last_log = time_uptime; printf("ipfw: %s: entry already present, done\n", __func__); } IPFW_DYN_UNLOCK(); return (0); } show me your ipfw ruleset/kernel config and i'll try to reproduce it. Is it possible to have access to that box? -- bye, P.