From owner-freebsd-net  Wed Apr  3 11:40:27 2002
Delivered-To: freebsd-net@freebsd.org
Received: from rwcrmhc52.attbi.com (rwcrmhc52.attbi.com [216.148.227.88])
	by hub.freebsd.org (Postfix) with ESMTP id 94ACC37B405
	for <freebsd-net@freebsd.org>; Wed,  3 Apr 2002 11:40:19 -0800 (PST)
Received: from InterJet.elischer.org ([12.232.206.8])
          by rwcrmhc52.attbi.com
          (InterMail vM.4.01.03.27 201-229-121-127-20010626) with ESMTP
          id <20020403194019.TPMG22231.rwcrmhc52.attbi.com@InterJet.elischer.org>;
          Wed, 3 Apr 2002 19:40:19 +0000
Received: from localhost (localhost.elischer.org [127.0.0.1])
	by InterJet.elischer.org (8.9.1a/8.9.1) with ESMTP id LAA26808;
	Wed, 3 Apr 2002 11:21:41 -0800 (PST)
Date: Wed, 3 Apr 2002 11:21:40 -0800 (PST)
From: Julian Elischer <julian@elischer.org>
To: Christophe =?ISO-8859-1?B?UHLpdm90YXV4?= <c.prevotaux@hexanet.fr>
Cc: freebsd-net@freebsd.org
Subject: Re: Firewall rules renumbering or rule number step
In-Reply-To: <20020402200846.6c8793bf.c.prevotaux@hexanet.fr>
Message-ID: <Pine.BSF.4.21.0204031118260.21569-100000@InterJet.elischer.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=X-UNKNOWN
Content-Transfer-Encoding: QUOTED-PRINTABLE
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org



On Tue, 2 Apr 2002, Christophe [ISO-8859-1] Pr=E9votaux wrote:

> Hi
>=20
> I have reached the 655 firewalling rules limit (with discrete values)
> in ipfw and I was wondering why ipfw will not let the user select
> the incremental step value in rules numbering ? also it should be
> possible to renumber these rules on the fly=20
> (though, i agree this is not this useful)

If you do yuor own numberring you an certainly do more than that..

a 'renumber' wouldn't be that hard I think.. patches accepted :-)

basicaly..=20

pass 1:
ensure the 'skipto' caches are all filled out...
pass 2:
renumber...
pass3:
change the numbers on skipto commands to the new number pointed to
by the cached pointer.


>=20
> --
> =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
> Christophe Prevotaux        Email: c.prevotaux@hexanet.fr
> HEXANET SARL                URL: http://www.hexanet.fr/
> Z.A.C Les Charmilles        Tel: +33 (0)3 26 79 30 05=20
> 3 All=E9e Thierry Sabine      Direct: +33 (0)3 26 79 08 02=20
> BP202                       Fax: +33 (0)3 26 79 30 06
> 51686 Reims Cedex 2 =09=09                  =20
> FRANCE                   HEXANET Network Operation Center            =20
> =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
>=20
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-net" in the body of the message
>=20


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message