Date: Wed, 26 Jun 2002 14:46:59 -0700 From: Lars Eggert <larse@ISI.EDU> To: Matt Impett <M.Impett@flarion.com> Cc: "'freebsd-net@freebsd.org'" <freebsd-net@freebsd.org>, "'freebsd-questions@freebsd.org'" <freebsd-questions@freebsd.org> Subject: Re: source address based routing Message-ID: <3D1A3653.4070601@isi.edu> References: <8C92E23A3E87FB479988285F9E22BE46FDE779@ftmail.lab.flarion.com>
next in thread | previous in thread | raw e-mail | index | archive | help
[-- Attachment #1 --]
Matt Impett wrote:
> Ok.. Modifying the ipfw stuff is where I ended up after looking at this for
> a while. I have thought about adding something like the following:
>
> ipfw add fwd-intf GIF-DEVICE all from SOURCE to any
>
> The only problem I have seen with this (besides needing to modify the kernel
> and the user space ipfw application) was this: Once this rule is matched,
> the output routine of the GIF-DEVICE will be called and it will expect a
> rtentry structure to be passed. Unfortunately, I won't really have a
> correct rtentry structure as I am now forwarding to the device on a firewall
> rule instead of a routing table entry.
>
> However, from looking at the gif code, I don't think it really uses the
> rtentry structure anyway, so hopefully I won't break too much by passing a
> bogus one.
>
> Sound reasonable??
Yup, but I'm really too familiar with the routing or ipfw parts of the
network stack. Ping Luigi?
Lars
PS: Minor nit: I'd overload the "fwd" action instead of creating a new one.
--
Lars Eggert <larse@isi.edu> USC Information Sciences Institute
[-- Attachment #2 --]
0 *H
01
0 +�0 *H
��00
G0
*H
�01
0 UZA10U
Western Cape10U Cape Town10
U
Thawte1
0U
Certificate Services1(0&U Personal Freemail RSA 2000.8.300
010824164000Z
020824164000Z0T10
UEggert1
0
U*Lars10U
Lars Eggert1
0 *H
larse@isi.edu00
*H
��0�
|\Pw v~~
FDooӦA\- Cˀ4.)&{肋
,z
(ܷر߈T7_'txGH^tt/ҹB8%t<#ֲN�V0T0*+e!0 �00L2uMyffBNUbNJJcdZ2s0U
0
larse@isi.edu0
U
0�0
*H
��aJPMՒ�]cѭC+kS+wZ1gY",YT41
j
6:~℩
D~Kؚl=u(ՎM?cF7@}T00
G0
*H
�01
0 UZA10U
Western Cape10U Cape Town10
U
Thawte1
0U
Certificate Services1(0&U Personal Freemail RSA 2000.8.300
010824164000Z
020824164000Z0T10
UEggert1
0
U*Lars10U
Lars Eggert1
0 *H
larse@isi.edu00
*H
��0�
|\Pw v~~
FDooӦA\- Cˀ4.)&{肋
,z
(ܷر߈T7_'txGH^tt/ҹB8%t<#ֲN�V0T0*+e!0 �00L2uMyffBNUbNJJcdZ2s0U
0
larse@isi.edu0
U
0�0
*H
��aJPMՒ�]cѭC+kS+wZ1gY",YT41
j
6:~℩
D~Kؚl=u(ՎM?cF7@}T080fErtcvE.0
*H
�01
0 UZA10U
Western Cape10U Cape Town10U
Thawte Consulting1(0&U
Certification Services Division1$0"UThawte Personal Freemail CA1+0) *H
personal-freemail@thawte.com0
000830000000Z
040827235959Z01
0 UZA10U
Western Cape10U Cape Town10
U
Thawte1
0U
Certificate Services1(0&U Personal Freemail RSA 2000.8.3000
*H
��0�32c %E>nx'gڈD)c5*mp<ܮto034qmOe
KaU5u'rװ
|CBPQ<9TIf�- ki�N0L0)U
"0
0
10UPrivateLabel1-2970U
0�0
U
0
*H
��1KG]qSl]y=&b""I'{9$
*8PUl
LGl
X1B li+@]jy.%݊
Z<D&iHΥbb10001
0 UZA10U
Western Cape10U Cape Town10
U
Thawte1
0U
Certificate Services1(0&U Personal Freemail RSA 2000.8.30G0 +�a0 *H
1
*H
0
*H
1
020626214659Z0# *H
1Qoluӧ;铝9IZɇ;0R *H
1E0C0
*H
0*H
�0
*H
@0+0
*H
(0
*H
101
0 UZA10U
Western Cape10U Cape Town10
U
Thawte1
0U
Certificate Services1(0&U Personal Freemail RSA 2000.8.30G0
*H
�R(Fgvp|;p
(L+F~:~>G#Ij
q/.hϼ}m4
U46ÑxìZ>aSj
&ԒBp#r$
������
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3D1A3653.4070601>