From owner-freebsd-security@FreeBSD.ORG  Thu Jan 13 20:02:58 2005
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 4965316A4CE
	for <freebsd-security@freebsd.org>;
	Thu, 13 Jan 2005 20:02:58 +0000 (GMT)
Received: from no-such-agency.net (eschelon.no-such-agency.net
	[216.93.183.141])
	by mx1.FreeBSD.org (Postfix) with ESMTP id CC55343D48
	for <freebsd-security@freebsd.org>;
	Thu, 13 Jan 2005 20:02:55 +0000 (GMT)
	(envelope-from jpp@cloudview.com)
Received: from eschelon.no-such-agency.net (localhost [127.0.0.1])
	by guardian (Postfix) with SMTP id 282141732B7
	for <freebsd-security@freebsd.org>;
	Thu, 13 Jan 2005 12:02:55 -0800 (PST)
Received: from no-such-agency.net ([216.93.183.141])
	by eschelon.no-such-agency.net ([216.93.183.141])
	with SMTP (gateway) id A05CFA17F1C; Thu, 13 Jan 2005 12:02:55 -0800
Received: from [192.168.2.120] (blackhole.no-such-agency.net [64.142.103.196])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by no-such-agency.net (Postfix) with ESMTP id E63A31732B7
	for <freebsd-security@freebsd.org>;
	Thu, 13 Jan 2005 12:02:54 -0800 (PST)
Message-ID: <41E6D3EE.5090205@cloudview.com>
Date: Thu, 13 Jan 2005 12:02:54 -0800
From: John Pettitt <jpp@cloudview.com>
Organization: CloudView Photographic
User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: freebsd-security@freebsd.org
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Subject: Listening outside ipfw / program interface to ipfw
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Security issues [members-only posting]
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Jan 2005 20:02:58 -0000


Hi,
    Two quick questions that I can't seem to find answers for using google.

1) is is possible to listen outside an ipfw firewall - that is have 
ethereal record the packets before ipfw starts dropping them? If so how?

2) Is there an api to ipfw that will let me manipulate rules, query 
stats etc?  I need something faster than running the command line binary?

Thanks

John