From owner-freebsd-hackers@FreeBSD.ORG  Tue Dec 23 12:28:11 2003
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id E892B16A4CE
	for <freebsd-hackers@freebsd.org>;
	Tue, 23 Dec 2003 12:28:11 -0800 (PST)
Received: from xorpc.icir.org (xorpc.icir.org [192.150.187.68])
	by mx1.FreeBSD.org (Postfix) with ESMTP id C488743D60
	for <freebsd-hackers@freebsd.org>;
	Tue, 23 Dec 2003 12:28:10 -0800 (PST)
	(envelope-from rizzo@xorpc.icir.org)
Received: from xorpc.icir.org (localhost [127.0.0.1])
	by xorpc.icir.org (8.12.9p1/8.12.3) with ESMTP id hBNKS9SN011920
	for <freebsd-hackers@freebsd.org>;
	Tue, 23 Dec 2003 12:28:09 -0800 (PST)
	(envelope-from rizzo@xorpc.icir.org)
Received: (from rizzo@localhost)
	by xorpc.icir.org (8.12.9p1/8.12.3/Submit) id hBNKS9OK011919
	for freebsd-hackers@freebsd.org; Tue, 23 Dec 2003 12:28:09 -0800 (PST)
	(envelope-from rizzo)
Date: Tue, 23 Dec 2003 12:28:09 -0800
From: Luigi Rizzo <rizzo@icir.org>
To: freebsd-hackers@freebsd.org
Message-ID: <20031223122808.A7604@xorpc.icir.org>
References: <20031223165439.GA23721@ussenterprise.ufp.org>
	<20031223201712.GA33497@ussenterprise.ufp.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5.1i
In-Reply-To: <20031223201712.GA33497@ussenterprise.ufp.org>;
	from bicknell@ufp.org on Tue, Dec 23, 2003 at 03:17:12PM -0500
X-Mailman-Approved-At: Wed, 24 Dec 2003 05:15:02 -0800
Subject: Re: natd + ipfw question
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 23 Dec 2003 20:28:12 -0000

On Tue, Dec 23, 2003 at 03:17:12PM -0500, Leo Bicknell wrote:
...
> I must not be clear on what "in" "out" "recv" and "xmit" mean, and
> after reading the manual page 3 times I'm now even more confused.

The names are reasonably intuitive...

  "in"		matches packets on the INput path (basically,
		ip_input() and/or ether_input()

  "out"		matches packets on the OUTput path;
		(ip_output() and/or ether_output())

  "recv foo0"	matches packets that have been received from
		interface "foo0"

  "xmit bar1"	matches packets that are going to be transmitted
		on interface "bar1"

  "via xx2"	matches packets that are either received or
		transmitted through interface xx2

the flow diagram near the beginning of the ipfw manpage should
clarify things a bit (i agree that the wording of 'recv/xmit/via'
section is a bit confusing, so if you have better suggestions they
are welcome)

	cheers
	luigi