From owner-freebsd-current Mon Dec 16 22:49:17 1996 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id WAA04041 for current-outgoing; Mon, 16 Dec 1996 22:49:17 -0800 (PST) Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by freefall.freebsd.org (8.8.4/8.8.4) with ESMTP id WAA04036 for ; Mon, 16 Dec 1996 22:49:15 -0800 (PST) Received: (from smap@localhost) by whistle.com (8.7.5/8.6.12) id WAA22595; Mon, 16 Dec 1996 22:48:43 -0800 (PST) Received: from bubba.whistle.com(207.76.205.7) by whistle.com via smap (V1.3) id sma022593; Mon Dec 16 22:48:20 1996 Received: (from archie@localhost) by bubba.whistle.com (8.7.5/8.6.12) id WAA13466; Mon, 16 Dec 1996 22:48:20 -0800 (PST) From: Archie Cobbs Message-Id: <199612170648.WAA13466@bubba.whistle.com> Subject: Re: IP masquerading (for a LAN, _not_ PPP) In-Reply-To: <32B61D41.167EB0E7@whistle.com> from Julian Elischer at "Dec 16, 96 08:10:41 pm" To: julian@whistle.com (Julian Elischer) Date: Mon, 16 Dec 1996 22:48:19 -0800 (PST) Cc: jkh@time.cdrom.com, barry@Lustig.COM, owensc@enc.edu, current@freebsd.org X-Mailer: ELM [version 2.4ME+ PL25 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-current@freebsd.org X-Loop: FreeBSD.org Precedence: bulk IMHO, the most useful way to implement ipfw is using divert sockets.. because it makes it a completely independent module that is easy to hack & develop from user mode. The disadvantage of course is that it's somewhat slower than a kernel-only implementation (we haven't found this to be a problem though). Although we can't release our code that does this right now, I'd be more than happy to "advise" anyone who is interested in porting any of the existing address translation code to use divert sockets... if it's written in a reasonably sane fashion, it shouldn't be very hard in any case. FWIW, -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com