From owner-freebsd-hackers@FreeBSD.ORG Tue Jun 29 21:26:53 2004 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1FFB016A4DF for ; Tue, 29 Jun 2004 21:26:53 +0000 (GMT) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.171]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6580943D53 for ; Tue, 29 Jun 2004 21:26:52 +0000 (GMT) (envelope-from max@love2party.net) Received: from [212.227.126.155] (helo=mrelayng.kundenserver.de) by moutng.kundenserver.de with esmtp (Exim 3.35 #1) id 1BfQ7r-0001l7-00; Tue, 29 Jun 2004 23:26:47 +0200 Received: from [217.83.10.36] (helo=donor.laier.local) by mrelayng.kundenserver.de with asmtp (TLSv1:RC4-MD5:128) (Exim 3.35 #1) id 1BfQ7q-0005hM-00; Tue, 29 Jun 2004 23:26:47 +0200 From: Max Laier To: freebsd-hackers@freebsd.org, sid@merlin.com.ua Date: Tue, 29 Jun 2004 23:24:05 +0200 User-Agent: KMail/1.6.2 References: <1709637723.20040629184818@merlin.com.ua> In-Reply-To: <1709637723.20040629184818@merlin.com.ua> MIME-Version: 1.0 Content-Type: multipart/signed; protocol="application/pgp-signature"; micalg=pgp-sha1; boundary="Boundary-02=_83d4AC0dvlpGM+T"; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Message-Id: <200406292324.12678.max@love2party.net> X-Provags-ID: kundenserver.de abuse@kundenserver.de auth:61c499deaeeba3ba5be80f48ecc83056 Subject: Re: ipfw add allow ip from @access_list1 to any in X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 29 Jun 2004 21:26:53 -0000 --Boundary-02=_83d4AC0dvlpGM+T Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Wednesday 30 June 2004 03:48, sid@merlin.com.ua wrote: > Hello freebsd-hackers, > > > Hi, > for my own purposes I add some new features to ipfw2. > now hereis patches for 5.1 > Luigi some time ago have a look at ones, but now.. > if it is looks like interesting, get and enjoy it free > this is not a release, I stil work about it. > and I wait for 5.3 to make complete patches for 5.3. > will be pleasure for me if this will include to release... > > read first: > ftp://merlin.com.ua/pub/FreeBSD/5.1/ipfw_sid/readme > > ftp://merlin.com.ua/pub/FreeBSD/5.1/ipfw_sid/*.tgz > > disclaimer: > who downloaded it, please make backups your original files, > extract patches in new directory and look at ones first. > if you not sure that you doing, do not do anything, please. > support of that features only if ones will include in FreeBSD > and only via freebsd-hackers@freebsd.org > > its do like this: > > ipnt add @MY_NET 192.168.0.0/16 > ipnt add @MY_NET 195.66.199.0/24 > ipnt add @MY_NET 62.16.9.0/24 > > ipfw add 350 pipe 350 ip from any to @MY_NET out > > you can manipulate that lists without changing firewall > > ipnt del @MY_NET 0/0 > ipnt add @MY_NET 1.1.1.1 I think something like this is implemented in -current for quite some time= =20 already. Check the "LOOKUP TABLES" section of ipfw(8) and ask ru@ about his= =20 plans to transform them from numbered to named entities (as that is what yo= ur=20 are suggesting). =2D-=20 Best regards, | mlaier@freebsd.org Max Laier | ICQ #67774661 http://pf4freebsd.love2party.net/ | mlaier@EFnet --Boundary-02=_83d4AC0dvlpGM+T Content-Type: application/pgp-signature Content-Description: signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQBA4d38XyyEoT62BG0RAgqQAJkBskRGnCCgv1xpGNP6TLsbPSwbBwCdE/ua DK0diRJZkuMLak/xA2ZLROI= =rf2G -----END PGP SIGNATURE----- --Boundary-02=_83d4AC0dvlpGM+T--