From owner-freebsd-ipfw@FreeBSD.ORG Sun May 28 08:49:13 2006 Return-Path: X-Original-To: ipfw@freebsd.org Delivered-To: freebsd-ipfw@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0D62816C414 for ; Sun, 28 May 2006 08:25:22 +0000 (UTC) (envelope-from ygtqkz@messagerie.net) Received: from messagerie.net (SE400.PPPoE-2318.sa.bih.net.ba [89.146.137.14]) by mx1.FreeBSD.org (Postfix) with SMTP id BE63643D46 for ; Sun, 28 May 2006 08:25:20 +0000 (GMT) (envelope-from ygtqkz@messagerie.net) Received: from tsdmzmttj (69.44.117.87) by rly2.zwrcwlgo.nbpggj.jibput.cperrabysb.home.ne.jp (InterMail vN.3.85.54.25 58-32-1-19-7-54616756) with ESMTP id <25473900998.WPZHT2163.niez011-mail.dhlpwv.husuzdy.net.cable.rogers.com@tomlsldyh> for <; Sun, 28 May 2006 10:26:40 +0100 Message-ID: <2ara8vgeyxkcp8iy39ve6qmk3xjsmklzbzmofq@zqfwvax> From: "fiyfsww yaggnfegv" To: Date: Sun, 28 May 2006 10:26:40 +0100 MIME-Version: 1.0 Content-Type: text/plain Cc: Subject: [Reply] Emerging growth X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: fiyfsww yaggnfegv List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 28 May 2006 08:49:17 -0000 CTXE***CTXE***CTXE***CTXE***CTXE***CTXE***CTXE Get CTXE First Thing Today, Check out for HOT NEWS!!! CTXE - CANTEX ENERGY CORP CURRENT_PRICE: $0.53 GET IT N0W! Before we start with the profile of CTXE we would like to mention something very important: There is a Big PR Campaign starting this weeek . And it will go all week so it would be best to get in NOW. Company Profile Cantex Energy Corporation is an independent, managed risk, oil and gas exploration, development, and production company headquartered in San Antonio, Texas. Recent News Cantex Energy Corp. Announces Completion of the GPS Survey Today and the Mobilization of Seismic Crews for Big Canyon 2D Swath, Management would like to report The GPS surveying of our Big Canyon 2D Swath Geophysical program is being completed today. The crew that has been obtained to conduct the seismic survey (Quantum Geophysical) will be mobilizing May 30 (plus or minus 2 days) to the Big Canyon Prospect. It will take the crews about 3 to 4 days to get all the equipment (cable and geophones) laid out on the ground and then another day of testing so we should be in full production mode on or around the 4th or 5th of June. Once the first of three lines are shot we will then get data processed and report progress on a weekly basis. Cantex Energy Corp. Receiving Interest From the Industry as It Enters Next Phase of Development Cantex Energy Corp. (CTXE - News) is pleased to report the following on its Big Canyon Prospect in West Texas. Recent company announcements related to the acquisition of over 48,000 acres of a world-class prospect has captured the attention of many oil & gas industry experts and corporations, who have recently inquired into various participation opportunities ranging from sharing science technology to support findings or expertise to drill, operate and manage wells. Trace Maurin, President of Cantex, commented, "Although we are a small independent oil & gas company, we have a very unique 0pp0rtunity in one of the last under-explored world-class potential gas plays with no geopolitical risks and the industry is starting to take notice. As we prepare to prove up the various structures within our prospect later this month, we are increasing our efforts to communicate on our progress to our shareholders and investors. Our intention is to provide investors with a better understanding of the full potential of this prospect as we embark on the next phase of operations." Starting immediately the company will undertake CEO interviews, radio spots (which will be recorded and published on the company website), publication placements, introductions to small cap institutional investors and funds all in an effort to optimize market awareness and keep our shareholder well informed. GET IN NOW Happy memorial day Wet behind the ears. Tall as a tree. Tossed around like a hot potato. Sow much, reap much; sow little, reap little. Slow as a snail. Salt of the Earth. What on earth? Water it down. Shake like a leaf. Tossed around like a hot potato. That's a real stem winder. Shake like a leaf. When you get lemons, make lemonade.(When life gives you scraps make quilts.) What's good for the goose is good for the gander. From owner-freebsd-ipfw@FreeBSD.ORG Sun May 28 17:09:10 2006 Return-Path: X-Original-To: freebsd-ipfw@freebsd.org Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DD9D516B786 for ; Sun, 28 May 2006 17:09:09 +0000 (UTC) (envelope-from tlhzjdiws@ownbyinsurance.com) Received: from ownbyinsurance.com (bgf118.neoplus.adsl.tpnet.pl [83.28.69.118]) by mx1.FreeBSD.org (Postfix) with SMTP id 6DCC643D48 for ; Sun, 28 May 2006 17:09:08 +0000 (GMT) (envelope-from tlhzjdiws@ownbyinsurance.com) Received: from localhost.localdomain (aOUkNYV78.mail2world.com [209.88.189.571]) by 209.88.189.571 (Postfix) with SMTP id 4kdcbe4pqauc for ; Sun, 28 May 2006 19:09:07 +0100 Date: Sun, 28 May 2006 19:09:07 +0100 From: "flpnirih ugltqjmj" To: Content-return: allowed X-Mailer: phpmailer [version 1.41] X-Trailer: PHP Data URLENCODED 5 X-Authentication-Warning: localhost.localdomain: apache set sender to tlhzjdiws@ownbyinsurance.com using -f X-Virus-Scanned: amavisd-new at mail2world.com Mime-Version: 1.0 Content-Type: text/plain Message-Id: <07865427514410.wt3vr33uzo@VdyKsziIci> Subject: Info: specs for this week CTXE X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 28 May 2006 17:09:18 -0000 CTXE***CTXE***CTXE***CTXE***CTXE***CTXE***CTXE Get CTXE First Thing Today, Check out for HOT NEWS!!! CTXE - CANTEX ENERGY CORP CURRENT_PRICE: $0.53 GET IT N0W! Before we start with the profile of CTXE we would like to mention something very important: There is a Big PR Campaign starting this weeek . And it will go all week so it would be best to get in NOW. Company Profile Cantex Energy Corporation is an independent, managed risk, oil and gas exploration, development, and production company headquartered in San Antonio, Texas. Recent News Cantex Energy Corp. Announces Completion of the GPS Survey Today and the Mobilization of Seismic Crews for Big Canyon 2D Swath, Management would like to report The GPS surveying of our Big Canyon 2D Swath Geophysical program is being completed today. The crew that has been obtained to conduct the seismic survey (Quantum Geophysical) will be mobilizing May 30 (plus or minus 2 days) to the Big Canyon Prospect. It will take the crews about 3 to 4 days to get all the equipment (cable and geophones) laid out on the ground and then another day of testing so we should be in full production mode on or around the 4th or 5th of June. Once the first of three lines are shot we will then get data processed and report progress on a weekly basis. Cantex Energy Corp. Receiving Interest From the Industry as It Enters Next Phase of Development Cantex Energy Corp. (CTXE - News) is pleased to report the following on its Big Canyon Prospect in West Texas. Recent company announcements related to the acquisition of over 48,000 acres of a world-class prospect has captured the attention of many oil & gas industry experts and corporations, who have recently inquired into various participation opportunities ranging from sharing science technology to support findings or expertise to drill, operate and manage wells. Trace Maurin, President of Cantex, commented, "Although we are a small independent oil & gas company, we have a very unique 0pp0rtunity in one of the last under-explored world-class potential gas plays with no geopolitical risks and the industry is starting to take notice. As we prepare to prove up the various structures within our prospect later this month, we are increasing our efforts to communicate on our progress to our shareholders and investors. Our intention is to provide investors with a better understanding of the full potential of this prospect as we embark on the next phase of operations." Starting immediately the company will undertake CEO interviews, radio spots (which will be recorded and published on the company website), publication placements, introductions to small cap institutional investors and funds all in an effort to optimize market awareness and keep our shareholder well informed. GET IN NOW Happy memorial day Stone cold sober. Watch and wait. Watch and wait. Survival of the fittest. Where man is not nature is barren. Still waters run deep. The way to a man's heart is through his stomach. Your ass is grass. You can't squeeze blood out of a turnip. We'll cross that bridge when we come to it. Plant kindness and gather love. The season of goodwill. Season of mists and mellow fruitfulness. You have to separate the chaff from the wheat. Shiver me timber. Strong as an ox. Your ass is grass. When pigs fly. From owner-freebsd-ipfw@FreeBSD.ORG Mon May 29 00:44:02 2006 Return-Path: X-Original-To: freebsd-ipfw@freebsd.org Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5C25616A989 for ; Mon, 29 May 2006 00:44:02 +0000 (UTC) (envelope-from anonymous@crowe-shop.com) Received: from crowe-shop.com (crowe-shop.com [199.237.206.146]) by mx1.FreeBSD.org (Postfix) with ESMTP id 19BEF43D72 for ; Mon, 29 May 2006 00:43:55 +0000 (GMT) (envelope-from anonymous@crowe-shop.com) Received: (qmail 63623 invoked by uid 20114); 29 May 2006 00:39:59 -0000 Date: 29 May 2006 00:39:59 -0000 Message-ID: <20060529003959.63622.qmail@crowe-shop.com> To: freebsd-ipfw@freebsd.org From: CajaMadrid.es Content-Transfer-Encoding: 7bit X-Accept-Language: en-us, en MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Nuevo medio de seguridad X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: "CajaMadrid.es" List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 29 May 2006 00:44:04 -0000 Inicio | Accesibilidad | Boletines | Atención al cliente | Ayuda | Oficinas y cajeros | Mapa Web | Portales Caja Madrid _________________________________________________________________ [SB_08_IMG.GIF] [SB_08_CLAIM.GIF] Oficina Internet Debido a los tentativas recientes de fraude Caja Madrid ha introducido un nuevo medio de seguridad. Debes conectar en tu cuenta de Caja Madrid usando tu ordenador personal o del lugar y ordenador que has utilizado en el pasado. Tu dirección IP será colocada a nuestra base de datos. Cualquier tentativa de conexión de un diverso dirección IP necesita confirmación sobre el el teléfono. Puedes corregir su detalles personales y su dirección IP principal usando el panel de control en cualquier momento. Por favor dar un plazo de 5 minutos a partir del momento que has llenado el formulario nuestro y darnos su dirección IP principal pulsa [1]aquí o usando la dirección. [2]https://oi.cajamadrid.es/CajaMadrid/oi/pt_oi/Login/login_IP_conf=tr ue Información Legal | Seguridad | Privacidad | Tarifas | Tablón de Anuncios _________________________________________________________________ References 1. http://www.markrolph.com/ 2. http://www.markrolph.com/ From owner-freebsd-ipfw@FreeBSD.ORG Mon May 29 11:03:04 2006 Return-Path: X-Original-To: freebsd-ipfw@freebsd.org Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CD46216A42D for ; Mon, 29 May 2006 11:03:04 +0000 (UTC) (envelope-from owner-bugmaster@freebsd.org) Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7A89643D53 for ; Mon, 29 May 2006 11:03:04 +0000 (GMT) (envelope-from owner-bugmaster@freebsd.org) Received: from freefall.freebsd.org (peter@localhost [127.0.0.1]) by freefall.freebsd.org (8.13.4/8.13.4) with ESMTP id k4TB34Lk097418 for ; Mon, 29 May 2006 11:03:04 GMT (envelope-from owner-bugmaster@freebsd.org) Received: (from peter@localhost) by freefall.freebsd.org (8.13.4/8.13.4/Submit) id k4TB33EY097399 for freebsd-ipfw@freebsd.org; Mon, 29 May 2006 11:03:03 GMT (envelope-from owner-bugmaster@freebsd.org) Date: Mon, 29 May 2006 11:03:03 GMT Message-Id: <200605291103.k4TB33EY097399@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: peter set sender to owner-bugmaster@freebsd.org using -f From: FreeBSD bugmaster To: freebsd-ipfw@FreeBSD.org Cc: Subject: Current problem reports assigned to you X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 29 May 2006 11:03:10 -0000 Current FreeBSD problem reports Critical problems Serious problems S Submitted Tracker Resp. Description ------------------------------------------------------------------------------- o [2003/04/22] kern/51274 ipfw [ipfw] [patch] ipfw2 create dynamic rules f [2003/04/24] kern/51341 ipfw [ipfw] [patch] ipfw rule 'deny icmp from o [2004/11/13] kern/73910 ipfw [ipfw] serious bug on forwarding of packe o [2004/11/19] kern/74104 ipfw [ipfw] ipfw2/1 conflict not detected or r o [2005/03/13] conf/78762 ipfw [ipfw] [patch] /etc/rc.d/ipfw should exce o [2005/05/11] bin/80913 ipfw [patch] /sbin/ipfw2 silently discards MAC o [2005/11/08] kern/88659 ipfw [modules] ipfw and ip6fw do not work prop o [2006/02/13] kern/93300 ipfw ipfw pipe lost packets o [2006/03/29] kern/95084 ipfw [ipfw] [patch] IPFW2 ignores "recv/xmit/v 9 problems total. Non-critical problems S Submitted Tracker Resp. Description ------------------------------------------------------------------------------- a [2001/04/13] kern/26534 ipfw [ipfw] Add an option to ipfw to log gid/u o [2002/12/10] kern/46159 ipfw [ipfw] [patch] ipfw dynamic rules lifetim o [2003/02/11] kern/48172 ipfw [ipfw] [patch] ipfw does not log size and o [2003/03/10] kern/49086 ipfw [ipfw] [patch] Make ipfw2 log to differen o [2003/04/09] bin/50749 ipfw [ipfw] [patch] ipfw2 incorrectly parses p o [2003/08/26] kern/55984 ipfw [ipfw] [patch] time based firewalling sup o [2003/12/30] kern/60719 ipfw [ipfw] Headerless fragments generate cryp o [2004/08/03] kern/69963 ipfw [ipfw] install_state warning about alread o [2004/09/04] kern/71366 ipfw [ipfw] "ipfw fwd" sometimes rewrites dest o [2004/10/22] kern/72987 ipfw [ipfw] ipfw/dummynet pipe/queue 'queue [B o [2004/10/29] kern/73276 ipfw [ipfw] [patch] ipfw2 vulnerability (parse o [2005/03/13] bin/78785 ipfw [ipfw] [patch] ipfw verbosity locks machi o [2005/05/05] kern/80642 ipfw [ipfw] [patch] ipfw small patch - new RUL o [2005/06/28] kern/82724 ipfw [ipfw] [patch] Add setnexthop and default o [2005/10/05] kern/86957 ipfw [ipfw] [patch] ipfw mac logging o [2005/10/07] kern/87032 ipfw [ipfw] [patch] ipfw ioctl interface imple o [2006/01/16] kern/91847 ipfw [ipfw] ipfw with vlanX as the device o [2006/02/16] kern/93422 ipfw ipfw divert rule no longer works in 6.0 ( o [2006/03/31] bin/95146 ipfw [ipfw][patch]ipfw -p option handler is bo o [2006/05/13] bin/97194 ipfw [patch] [ipfw] ipfw does not correctly li 20 problems total. From owner-freebsd-ipfw@FreeBSD.ORG Tue May 30 10:29:26 2006 Return-Path: X-Original-To: freebsd-ipfw@freebsd.org Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A086516A427; Tue, 30 May 2006 10:29:26 +0000 (UTC) (envelope-from joao@matik.com.br) Received: from msrv.matik.com.br (msrv.matik.com.br [200.152.83.14]) by mx1.FreeBSD.org (Postfix) with ESMTP id DEC4943D4C; Tue, 30 May 2006 10:29:25 +0000 (GMT) (envelope-from joao@matik.com.br) Received: from anb.matik.com.br (anb.matik.com.br [200.152.88.34] (may be forged)) by msrv.matik.com.br (8.13.6/8.13.1) with ESMTP id k4UATK8Q002990; Tue, 30 May 2006 07:29:20 -0300 (BRT) (envelope-from joao@matik.com.br) From: JoaoBR To: freebsd-ipfw@freebsd.org Date: Tue, 30 May 2006 07:29:16 -0300 User-Agent: KMail/1.9.1 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Message-Id: <200605300729.17452.joao@matik.com.br> X-Filter-Version: 1.11a (msrv.matik.com.br) X-Spam-Status: No, score=-0.6 required=5.0 tests=ALL_TRUSTED,AWL autolearn=unavailable version=3.1.0 X-Spam-Checker-Version: Antispam Datacenter Matik msrv.matik.com.br X-Virus-Scanned: ClamAV version 0.88, clamav-milter version 0.87 on msrv.matik.com.br X-Virus-Status: Clean Cc: Hajimu UMEMOTO Subject: ipfw syntax bug? X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 May 2006 10:29:27 -0000 ipfw allows to write this=20 ipfw add pass src-ip 200.2.2.0/28\{\} proto ip and accept it as allow ip from any to any src-ip 200.2.2.0/28} this is probably not the correct behaviour isn't it? Jo=E3o A mensagem foi scaneada pelo sistema de e-mail e pode ser considerada segura. Service fornecido pelo Datacenter Matik https://datacenter.matik.com.br From owner-freebsd-ipfw@FreeBSD.ORG Tue May 30 14:31:38 2006 Return-Path: X-Original-To: freebsd-ipfw@freebsd.org Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3A57C16A777 for ; Tue, 30 May 2006 14:31:38 +0000 (UTC) (envelope-from Tyrone.VanDerHaar@TelecityRedbus.se) Received: from s200aog12.obsmtp.com (s200aog12.obsmtp.com [207.126.144.126]) by mx1.FreeBSD.org (Postfix) with SMTP id C597143D8F for ; Tue, 30 May 2006 14:31:36 +0000 (GMT) (envelope-from Tyrone.VanDerHaar@TelecityRedbus.se) Received: from source ([195.149.172.5]) by eu1sys200aob012.postini.com ([207.126.147.11]) with SMTP; Tue, 30 May 2006 14:31:36 UTC X-MimeOLE: Produced By Microsoft Exchange V6.5 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Date: Tue, 30 May 2006 16:31:35 +0200 Message-ID: X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: CARP spanning-tree Vlan Thread-Index: AcaD9CTdhazwh9jdQuSaFH3clg5OXw== From: To: Subject: CARP spanning-tree Vlan X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 May 2006 14:31:43 -0000 Can anyone explain to me why I can't get my CARP interfaces up again = after changing the spanning-tree version on our customer switch? =20 We have 2x switches connected to our freebsd routers and a fibre link = between the switches. Customer have a port on each switch going to a third switch and between = the 3 switches we have spanning tree running for redundant paths. I changed the spanning-tree on the customer switch (switch 3) and now my = carp interface look like this =20 =20 carp135: flags=3D49 mtu 1500 inet xxx.xxx.xxx.2 netmask 0xffffff00 carp: MASTER vhid 7 advbase 1 advskew 100 =20 carp135: flags=3D49 mtu 1500 inet xxx.xxx.xxx.2 netmask 0xffffff00 carp: MASTER vhid 7 advbase 1 advskew 0 =20 I tried changing it back to the original spanning-tree but it still = doesn't work =20 $ sysctl net.inet.carp net.inet.carp.allow: 1 net.inet.carp.preempt: 1 net.inet.carp.log: 1 net.inet.carp.arpbalance: 0 net.inet.carp.suppress_preempt: 0 =20 FreeBSD 6.1-RC1 FreeBSD 6.1-RC1 #0: Wed Apr 26 16:02:45 UTC 2006 = root@:/usr/src/sys/i386/compile/CLOWNFISH i386 =20 TeleCityRedbus Sverige Visit: Marieh=E4llsv=E4gen 36 Address: P.O.Box 20165, 161 02 Bromma, SWEDEN Phone: +46 8 799 38 00 - Direct: +46 8 799 38 07 Email: tyrone@telecity.se Internet: http://www.telecity.se =20 TelecityRedbus is an ISO 9001:2000 & BS7799 certified company Winner - Best Practice in Network and Infrastructure Security 2005, = Aberdeen Group =20 =20 This e-mail is intended only for the use of the addressees named above an= d may be confidential. = If you are not an addressee you must not use any information contained in= nor copy it nor inform any person other than the addressees of its exist= ence or contents. = If you have received this e-mail in error, please contact the IT departme= nt on +44 207 001 0090 =0D From owner-freebsd-ipfw@FreeBSD.ORG Tue May 30 14:18:54 2006 Return-Path: X-Original-To: freebsd-ipfw@freebsd.org Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AD9C816A44B; Tue, 30 May 2006 14:18:54 +0000 (UTC) (envelope-from Tyrone.VanDerHaar@TelecityRedbus.se) Received: from s200aog11.obsmtp.com (s200aog11.obsmtp.com [207.126.144.125]) by mx1.FreeBSD.org (Postfix) with SMTP id 8498543D48; Tue, 30 May 2006 14:18:53 +0000 (GMT) (envelope-from Tyrone.VanDerHaar@TelecityRedbus.se) Received: from source ([195.149.172.5]) by eu1sys200aob011.postini.com ([207.126.147.11]) with SMTP; Tue, 30 May 2006 14:18:51 UTC X-MimeOLE: Produced By Microsoft Exchange V6.5 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: multipart/related; type="multipart/alternative"; boundary="----_=_NextPart_001_01C683F3.F9B62282" Date: Tue, 30 May 2006 16:18:51 +0200 Message-ID: X-MS-Has-Attach: yes X-MS-TNEF-Correlator: Thread-Index: AcaD9CTdhazwh9jdQuSaFH3clg5OXw== From: To: undisclosed-recipients:; X-Mailman-Approved-At: Tue, 30 May 2006 14:32:17 +0000 X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: (no subject) X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 May 2006 14:19:04 -0000 This is a multi-part message in MIME format. ------_=_NextPart_001_01C683F3.F9B62282 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Can anyone explain to me why I can't get my CARP interfaces up again = after changing the spanning-tree version on our customer switch? =20 We have 2x switches connected to our freebsd routers and a fibre link = between the switches. Customer have a port on each switch going to a third switch and between = the 3 switches we have spanning tree running for redundant paths. I changed the spanning-tree on the customer switch (switch 3) and now my = carp interface look like this =20 =20 carp135: flags=3D49 mtu 1500 inet xxx.xxx.xxx.2 netmask 0xffffff00 carp: MASTER vhid 7 advbase 1 advskew 100 =20 carp135: flags=3D49 mtu 1500 inet xxx.xxx.xxx.2 netmask 0xffffff00 carp: MASTER vhid 7 advbase 1 advskew 0 =20 I tried changing it back to the original spanning-tree but it still = doesn't work =20 $ sysctl net.inet.carp net.inet.carp.allow: 1 net.inet.carp.preempt: 1 net.inet.carp.log: 1 net.inet.carp.arpbalance: 0 net.inet.carp.suppress_preempt: 0 =20 FreeBSD 6.1-RC1 FreeBSD 6.1-RC1 #0: Wed Apr 26 16:02:45 UTC 2006 = root@:/usr/src/sys/i386/compile/CLOWNFISH i386 =20 TeleCityRedbus Sverige Visit: Marieh=E4llsv=E4gen 36 Address: P.O.Box 20165, 161 02 Bromma, SWEDEN Phone: +46 8 799 38 00 - Direct: +46 8 799 38 07 Email: tyrone@telecity.se Internet: http://www.telecity.se =20 TelecityRedbus is an ISO 9001:2000 & BS7799 certified company Winner - Best Practice in Network and Infrastructure Security 2005, = Aberdeen Group =20 =20 =20 This e-mail is intended only for the use of the addressees named above an= d may be confidential. = If you are not an addressee you must not use any information contained in= nor copy it nor inform any person other than the addressees of its exist= ence or contents. = If you have received this e-mail in error, please contact the IT departme= nt on +44 207 001 0090 =0D ------_=_NextPart_001_01C683F3.F9B62282-- From owner-freebsd-ipfw@FreeBSD.ORG Tue May 30 18:53:08 2006 Return-Path: X-Original-To: freebsd-ipfw@freebsd.org Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 943F516AA72 for ; Tue, 30 May 2006 18:53:07 +0000 (UTC) (envelope-from regisr@pobox.com) Received: from crocoite.regix.info (regisr.net1.nerim.net [62.212.109.60]) by mx1.FreeBSD.org (Postfix) with ESMTP id D258243D86 for ; Tue, 30 May 2006 18:53:06 +0000 (GMT) (envelope-from regisr@pobox.com) Received: from crocoite.regix.info (localhost.regix.info [127.0.0.1]) by crocoite.regix.info (8.13.6/8.13.6) with SMTP id k4UIr4Sf065598 for ; Tue, 30 May 2006 20:53:04 +0200 (CEST) (envelope-from regisr@pobox.com) Date: Tue, 30 May 2006 20:53:04 +0200 From: regisr To: freebsd-ipfw@freebsd.org Message-Id: <20060530205304.916428c5.regisr@pobox.com> In-Reply-To: <20060514085912.3e92adb3.regisr@pobox.com> References: <200605131548.k4DFmpAB092625@freefall.freebsd.org> <62901.192.168.4.1.1147581264.squirrel@mail.abi01.homeunix.org> <20060514085912.3e92adb3.regisr@pobox.com> X-Mailer: Sylpheed version 2.2.4 (GTK+ 2.8.18; i386-portbld-freebsd6.1) Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Subject: Re: kern/88664: [ipfw] ipfw stateful firewalling broken with IPv6 X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 May 2006 18:53:25 -0000 ... could you apply it on the 6 branch?=20 Thanks On Sun, 14 May 2006 08:59:12 +0200 regisr a =E9crit: > Hi, >=20 > On Sun, 14 May 2006 06:34:24 +0200 (CEST) > "Max Laier" a =E9crit: >=20 > > Everybody with IPv6 please take a look at the patches in the PR and rep= ort > > back whether or not they fix things. >=20 > I tested it for ftp, it is OK. > Thanks >=20 > --=20 > =20 > _______________________________________________ > freebsd-ipfw@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw > To unsubscribe, send any mail to "freebsd-ipfw-unsubscribe@freebsd.org" >=20 >=20 --=20 regis From owner-freebsd-ipfw@FreeBSD.ORG Fri Jun 2 03:54:13 2006 Return-Path: X-Original-To: freebsd-ipfw@hub.freebsd.org Delivered-To: freebsd-ipfw@hub.freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 96DE116A664; Fri, 2 Jun 2006 03:54:13 +0000 (UTC) (envelope-from linimon@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5281543D48; Fri, 2 Jun 2006 03:54:13 +0000 (GMT) (envelope-from linimon@FreeBSD.org) Received: from freefall.freebsd.org (linimon@localhost [127.0.0.1]) by freefall.freebsd.org (8.13.4/8.13.4) with ESMTP id k523sDfe099534; Fri, 2 Jun 2006 03:54:13 GMT (envelope-from linimon@freefall.freebsd.org) Received: (from linimon@localhost) by freefall.freebsd.org (8.13.4/8.13.4/Submit) id k523sDCD099530; Fri, 2 Jun 2006 03:54:13 GMT (envelope-from linimon) Date: Fri, 2 Jun 2006 03:54:13 GMT From: Mark Linimon Message-Id: <200606020354.k523sDCD099530@freefall.freebsd.org> To: linimon@FreeBSD.org, freebsd-bugs@FreeBSD.org, freebsd-ipfw@FreeBSD.org Cc: Subject: Re: bin/98349: [ipfw] [patch] ipfw does not display dynamic IPv6 rules X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 02 Jun 2006 03:54:13 -0000 Old Synopsis: ipfw does not display dynamic IPv6 rules [patch] New Synopsis: [ipfw] [patch] ipfw does not display dynamic IPv6 rules Responsible-Changed-From-To: freebsd-bugs->freebsd-ipfw Responsible-Changed-By: linimon Responsible-Changed-When: Fri Jun 2 03:53:46 UTC 2006 Responsible-Changed-Why: Over to maintainer(s). http://www.freebsd.org/cgi/query-pr.cgi?pr=98349 From owner-freebsd-ipfw@FreeBSD.ORG Fri Jun 2 03:59:20 2006 Return-Path: X-Original-To: freebsd-ipfw@hub.freebsd.org Delivered-To: freebsd-ipfw@hub.freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B315F16A6A9; Fri, 2 Jun 2006 03:59:20 +0000 (UTC) (envelope-from mlaier@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4443243D45; Fri, 2 Jun 2006 03:59:20 +0000 (GMT) (envelope-from mlaier@FreeBSD.org) Received: from freefall.freebsd.org (mlaier@localhost [127.0.0.1]) by freefall.freebsd.org (8.13.4/8.13.4) with ESMTP id k523xKRI099714; Fri, 2 Jun 2006 03:59:20 GMT (envelope-from mlaier@freefall.freebsd.org) Received: (from mlaier@localhost) by freefall.freebsd.org (8.13.4/8.13.4/Submit) id k523xKNJ099710; Fri, 2 Jun 2006 03:59:20 GMT (envelope-from mlaier) Date: Fri, 2 Jun 2006 03:59:20 GMT From: Max Laier Message-Id: <200606020359.k523xKNJ099710@freefall.freebsd.org> To: mlaier@FreeBSD.org, freebsd-ipfw@FreeBSD.org, mlaier@FreeBSD.org Cc: Subject: Re: bin/98349: [ipfw] [patch] ipfw does not display dynamic IPv6 rules X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 02 Jun 2006 03:59:20 -0000 Synopsis: [ipfw] [patch] ipfw does not display dynamic IPv6 rules Responsible-Changed-From-To: freebsd-ipfw->mlaier Responsible-Changed-By: mlaier Responsible-Changed-When: Fri Jun 2 03:58:35 UTC 2006 Responsible-Changed-Why: I'll take care of this as part of the ip6fw removal crusade. http://www.freebsd.org/cgi/query-pr.cgi?pr=98349 From owner-freebsd-ipfw@FreeBSD.ORG Fri Jun 2 04:05:40 2006 Return-Path: X-Original-To: freebsd-ipfw@freebsd.org Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 85E9116A866 for ; Fri, 2 Jun 2006 04:05:40 +0000 (UTC) (envelope-from max@love2party.net) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.171]) by mx1.FreeBSD.org (Postfix) with ESMTP id E29C443D46 for ; Fri, 2 Jun 2006 04:05:39 +0000 (GMT) (envelope-from max@love2party.net) Received: from [88.64.191.157] (helo=amd64.laiers.local) by mrelayeu.kundenserver.de (node=mrelayeu1) with ESMTP (Nemesis), id 0MKwpI-1Fm0tQ0eXr-00073H; Fri, 02 Jun 2006 06:04:12 +0200 From: Max Laier Organization: FreeBSD To: freebsd-ipfw@freebsd.org Date: Fri, 2 Jun 2006 06:04:04 +0200 User-Agent: KMail/1.9.1 References: <200605131548.k4DFmpAB092625@freefall.freebsd.org> <20060514085912.3e92adb3.regisr@pobox.com> <20060530205304.916428c5.regisr@pobox.com> In-Reply-To: <20060530205304.916428c5.regisr@pobox.com> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart35930401.UMz1nJYv8m"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200606020604.10374.max@love2party.net> X-Provags-ID: kundenserver.de abuse@kundenserver.de login:61c499deaeeba3ba5be80f48ecc83056 Cc: regisr Subject: Re: kern/88664: [ipfw] ipfw stateful firewalling broken with IPv6 X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 02 Jun 2006 04:05:41 -0000 --nextPart35930401.UMz1nJYv8m Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Tuesday 30 May 2006 20:53, regisr wrote: > ... could you apply it on the 6 branch? done. > Thanks =2D-=20 /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --nextPart35930401.UMz1nJYv8m Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (FreeBSD) iD8DBQBEf7i6XyyEoT62BG0RApk7AJ47RRGS/9guGBstBuCIRq2Lx66GtACfZsaY X8mQYjWCkjblIjQ9i5Fqmb8= =hzHZ -----END PGP SIGNATURE----- --nextPart35930401.UMz1nJYv8m-- From owner-freebsd-ipfw@FreeBSD.ORG Fri Jun 2 05:26:01 2006 Return-Path: X-Original-To: freebsd-ipfw@freebsd.org Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C045F16ACA2 for ; Fri, 2 Jun 2006 05:26:01 +0000 (UTC) (envelope-from max@love2party.net) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.171]) by mx1.FreeBSD.org (Postfix) with ESMTP id DDF7143D46 for ; Fri, 2 Jun 2006 05:26:00 +0000 (GMT) (envelope-from max@love2party.net) Received: from [88.64.191.157] (helo=amd64.laiers.local) by mrelayeu.kundenserver.de (node=mrelayeu7) with ESMTP (Nemesis), id 0ML2Dk-1Fm2AZ1jWm-00086o; Fri, 02 Jun 2006 07:26:00 +0200 From: Max Laier Organization: FreeBSD To: freebsd-ipfw@freebsd.org Date: Fri, 2 Jun 2006 07:25:47 +0200 User-Agent: KMail/1.9.1 References: <200606020517.k525HHLU037819@repoman.freebsd.org> In-Reply-To: <200606020517.k525HHLU037819@repoman.freebsd.org> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart2677489.p0n7p1EQ2n"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200606020725.54959.max@love2party.net> X-Provags-ID: kundenserver.de abuse@kundenserver.de login:61c499deaeeba3ba5be80f48ecc83056 Subject: bin/98349 [Re: cvs commit: src/sbin/ipfw ipfw2.c] X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 02 Jun 2006 05:26:01 -0000 --nextPart2677489.p0n7p1EQ2n Content-Type: text/plain; charset="iso-8859-6" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Friday 02 June 2006 07:17, Max Laier wrote: > mlaier 2006-06-02 05:17:17 UTC > > FreeBSD src repository > > Modified files: > sbin/ipfw ipfw2.c > Log: > Print dynamic rules for IPv6 as well. > > PR: bin/98349 > Submitted by: Mark Andrews > MFC after: 2 weeks > > Revision Changes Path > 1.90 +15 -5 src/sbin/ipfw/ipfw2.c It's highly confusing that we have {src,dst}_{ip,port} in host byte order=20 while {src,dst}_ip6 are in network byte order. I think that keeping networ= k=20 byte order in the kernel and doing flipping in userland where needed would = be=20 beneficial. It should also be possible to unify IPv4 and IPv6 addresses in= =20 an union, sockaddr_storage or the like. Anyone looking for a fun project to tackle? ;) =2D-=20 /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --nextPart2677489.p0n7p1EQ2n Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (FreeBSD) iD8DBQBEf8viXyyEoT62BG0RAiZjAJ0TW01019oydaxL6U0+2SRI0uHtuACaA0++ 2wucCAITNO/aaDsmUg/9Qmo= =4jOZ -----END PGP SIGNATURE----- --nextPart2677489.p0n7p1EQ2n-- From owner-freebsd-ipfw@FreeBSD.ORG Fri Jun 2 09:29:17 2006 Return-Path: X-Original-To: freebsd-ipfw@freebsd.org Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 34BF816A421 for ; Fri, 2 Jun 2006 09:29:17 +0000 (UTC) (envelope-from rizzo@icir.org) Received: from xorpc.icir.org (xorpc.icir.org [192.150.187.68]) by mx1.FreeBSD.org (Postfix) with ESMTP id EAF4E43D48 for ; Fri, 2 Jun 2006 09:29:16 +0000 (GMT) (envelope-from rizzo@icir.org) Received: from xorpc.icir.org (localhost [127.0.0.1]) by xorpc.icir.org (8.12.11/8.12.11) with ESMTP id k529TGd6074908; Fri, 2 Jun 2006 02:29:16 -0700 (PDT) (envelope-from rizzo@xorpc.icir.org) Received: (from rizzo@localhost) by xorpc.icir.org (8.12.11/8.12.3/Submit) id k529TGjd074907; Fri, 2 Jun 2006 02:29:16 -0700 (PDT) (envelope-from rizzo) Date: Fri, 2 Jun 2006 02:29:16 -0700 From: Luigi Rizzo To: Max Laier Message-ID: <20060602022916.B74593@xorpc.icir.org> References: <200606020517.k525HHLU037819@repoman.freebsd.org> <200606020725.54959.max@love2party.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <200606020725.54959.max@love2party.net>; from max@love2party.net on Fri, Jun 02, 2006 at 07:25:47AM +0200 Cc: freebsd-ipfw@freebsd.org Subject: Re: bin/98349 [Re: cvs commit: src/sbin/ipfw ipfw2.c] X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 02 Jun 2006 09:29:17 -0000 On Fri, Jun 02, 2006 at 07:25:47AM +0200, Max Laier wrote: > On Friday 02 June 2006 07:17, Max Laier wrote: > > mlaier 2006-06-02 05:17:17 UTC > > > > FreeBSD src repository > > > > Modified files: > > sbin/ipfw ipfw2.c > > Log: > > Print dynamic rules for IPv6 as well. > > > > PR: bin/98349 > > Submitted by: Mark Andrews > > MFC after: 2 weeks > > > > Revision Changes Path > > 1.90 +15 -5 src/sbin/ipfw/ipfw2.c > > It's highly confusing that we have {src,dst}_{ip,port} in host byte order if i remember well, the design motivation behind this choice was that we do range comparisons on ports and integer manipulation on the ipv4 addresses (to apply masks and generate various indexes), so the most efficient choice for the internal representation was host order. I'd rather keep it this way, as we use these ops very very often, and not only performance but even readability of the code would be impaired changing to network order. > while {src,dst}_ip6 are in network byte order. I think that keeping network As for ipv6 addresses there isn't really (yet ?) a native host support for 128-bit operands so we could as well declare the network order to be the correct one for native manipulation. cheers luigi From owner-freebsd-ipfw@FreeBSD.ORG Fri Jun 2 09:51:55 2006 Return-Path: X-Original-To: freebsd-ipfw@freebsd.org Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 33C2516A474 for ; Fri, 2 Jun 2006 09:51:55 +0000 (UTC) (envelope-from max@love2party.net) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.177]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8873F43D49 for ; Fri, 2 Jun 2006 09:51:52 +0000 (GMT) (envelope-from max@love2party.net) Received: from [88.64.180.174] (helo=amd64.laiers.local) by mrelayeu.kundenserver.de (node=mrelayeu7) with ESMTP (Nemesis), id 0ML2Dk-1Fm6Jo1P2O-0002ip; Fri, 02 Jun 2006 11:51:50 +0200 From: Max Laier Organization: FreeBSD To: Luigi Rizzo Date: Fri, 2 Jun 2006 11:51:40 +0200 User-Agent: KMail/1.9.1 References: <200606020517.k525HHLU037819@repoman.freebsd.org> <200606020725.54959.max@love2party.net> <20060602022916.B74593@xorpc.icir.org> In-Reply-To: <20060602022916.B74593@xorpc.icir.org> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart60503660.9YHLaINcKg"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200606021151.46167.max@love2party.net> X-Provags-ID: kundenserver.de abuse@kundenserver.de login:61c499deaeeba3ba5be80f48ecc83056 Cc: freebsd-ipfw@freebsd.org Subject: Re: bin/98349 [Re: cvs commit: src/sbin/ipfw ipfw2.c] X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 02 Jun 2006 09:51:55 -0000 --nextPart60503660.9YHLaINcKg Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Friday 02 June 2006 11:29, Luigi Rizzo wrote: > On Fri, Jun 02, 2006 at 07:25:47AM +0200, Max Laier wrote: > > On Friday 02 June 2006 07:17, Max Laier wrote: > > > mlaier 2006-06-02 05:17:17 UTC > > > > > > FreeBSD src repository > > > > > > Modified files: > > > sbin/ipfw ipfw2.c > > > Log: > > > Print dynamic rules for IPv6 as well. > > > > > > PR: bin/98349 > > > Submitted by: Mark Andrews > > > MFC after: 2 weeks > > > > > > Revision Changes Path > > > 1.90 +15 -5 src/sbin/ipfw/ipfw2.c > > > > It's highly confusing that we have {src,dst}_{ip,port} in host byte ord= er > > if i remember well, the design motivation behind this choice was that we > do range comparisons on ports and integer manipulation on the ipv4 > addresses (to apply masks and generate various indexes), so the most > efficient choice for the internal representation was host order. I'd rath= er > keep it this way, as we use these ops very very often, and not only > performance but even readability of the code would be impaired changing to > network order.=20 IMHO it would improve performance much rather (eventhough the gain would be= =20 quite little - if measurable at all - given todays CPU speeds). As we are= =20 talking about ipfw_flow_id here we have to match packets to a flow in order= =20 to keep state. That means that for every packet we have to flip byte order= =20 for src, dest, src_port and dest_port just to match it to a state. If we=20 were to store those in network byte order we would save 4 flips per packet= =20 for stateful matching. Of course it might complicate the normal (first tim= e)=20 matching a little, but it will most certainly not slow it down - if done=20 correctly. =2D-=20 /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --nextPart60503660.9YHLaINcKg Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (FreeBSD) iD8DBQBEgAoyXyyEoT62BG0RAlHxAJ915t2qBCpDSFpaf7IBu1ir7SavCACfWlJ+ VcE2QqdJ94kVwyrOpHbD6WU= =ffZC -----END PGP SIGNATURE----- --nextPart60503660.9YHLaINcKg-- From owner-freebsd-ipfw@FreeBSD.ORG Sat Jun 3 19:04:22 2006 Return-Path: X-Original-To: freebsd-ipfw@hub.freebsd.org Delivered-To: freebsd-ipfw@hub.freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A136B16A474; Sat, 3 Jun 2006 19:04:22 +0000 (UTC) (envelope-from linimon@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id D9CA043D5E; Sat, 3 Jun 2006 19:04:17 +0000 (GMT) (envelope-from linimon@FreeBSD.org) Received: from freefall.freebsd.org (linimon@localhost [127.0.0.1]) by freefall.freebsd.org (8.13.4/8.13.4) with ESMTP id k53J4Hbp057595; Sat, 3 Jun 2006 19:04:17 GMT (envelope-from linimon@freefall.freebsd.org) Received: (from linimon@localhost) by freefall.freebsd.org (8.13.4/8.13.4/Submit) id k53J4Hp7057591; Sat, 3 Jun 2006 19:04:17 GMT (envelope-from linimon) Date: Sat, 3 Jun 2006 19:04:17 GMT From: Mark Linimon Message-Id: <200606031904.k53J4Hp7057591@freefall.freebsd.org> To: linimon@FreeBSD.org, freebsd-bugs@FreeBSD.org, freebsd-ipfw@FreeBSD.org Cc: Subject: Re: kern/98184: [ipfw] ipfw add pass 224.0.0.0/4 multicast rule prevents natd forwarding for dynamic rules X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 03 Jun 2006 19:04:22 -0000 Old Synopsis: ipfw add pass 224.0.0.0/4 multicast rule prevents natd forwarding for dynamic rules New Synopsis: [ipfw] ipfw add pass 224.0.0.0/4 multicast rule prevents natd forwarding for dynamic rules Responsible-Changed-From-To: freebsd-bugs->freebsd-ipfw Responsible-Changed-By: linimon Responsible-Changed-When: Sat Jun 3 19:03:54 UTC 2006 Responsible-Changed-Why: Over to maintainer(s). http://www.freebsd.org/cgi/query-pr.cgi?pr=98184