From owner-freebsd-net@FreeBSD.ORG Fri May 12 15:51:19 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 84FAB16A689; Fri, 12 May 2006 15:51:19 +0000 (UTC) (envelope-from vadimnuclight@tpu.ru) Received: from relay1.tpu.ru (relay1.tpu.ru [213.183.112.102]) by mx1.FreeBSD.org (Postfix) with ESMTP id EA55B43D46; Fri, 12 May 2006 15:51:18 +0000 (GMT) (envelope-from vadimnuclight@tpu.ru) Received: by relay1.tpu.ru (Postfix, from userid 501) id 3589B10C482; Fri, 12 May 2006 22:51:15 +0700 (NOVST) Received: from mail.main.tpu.ru (mail.main.tpu.ru [10.0.0.3]) by relay1.tpu.ru (Postfix) with ESMTP id 1A85E10C47C; Fri, 12 May 2006 22:51:15 +0700 (NOVST) Received: from mail.tpu.ru ([213.183.112.105]) by mail.main.tpu.ru with Microsoft SMTPSVC(6.0.3790.1830); Fri, 12 May 2006 22:51:15 +0700 Received: from nuclight.avtf.net ([82.117.64.107]) by mail.tpu.ru over TLS secured channel with Microsoft SMTPSVC(6.0.3790.1830); Fri, 12 May 2006 22:51:14 +0700 Date: Fri, 12 May 2006 22:50:10 +0700 To: "Luigi Rizzo" , "Patrick Tracanelli" References: <44648E66.6010800@freebsdbrasil.com.br> <20060512065327.B16302@xorpc.icir.org> From: "Vadim Goncharov" Organization: AVTF TPU Hostel Content-Type: text/plain; format=flowed; delsp=yes; charset=koi8-r MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Message-ID: In-Reply-To: <20060512065327.B16302@xorpc.icir.org> User-Agent: Opera M2/7.54 (Win32, build 3865) X-OriginalArrivalTime: 12 May 2006 15:51:14.0666 (UTC) FILETIME=[E62D64A0:01C675DB] Cc: freebsd-net@freebsd.org, freebsd-ipfw@freebsd.org Subject: Re: [patch] ipfw packet tagging X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 12 May 2006 15:51:19 -0000 12.05.06 в 20:53 Luigi Rizzo в своём письме писал(а): >> > I've tried Andrey Elsukov's ipfw "tag/tagged" patches from: >> > http://butcher.heavennet.ru/patches/kernel/ipfw_tags/ >> > >> > Tested on 5.5-PRERELEASE production server with moderate >> > load - rock stable [I've also looked through the code - patch >> > is small, so it simply can't be any bugs there ;)]. >> > >> > Personally I very like the idea from original Andrey's letter >> >> I have tested on 6.1 and works fine too. >> >> Hope it gets commited. Very useful for altq/dummynet flexibility too. > > i would, however, like to have a bit more documentation in the patch, > in particular: > > - a manpage patch describing how to use the thing, and also the > behaviour in in odd situations (e.g. what happens when we try to tag > a packet multiple times ? does the tag survive between the 'input' > and 'output' path of ipfw for routed packets, etc ?). A question about features: is it worth adding functionality of matching range of tags? For example: ipfw add pass ip from any to any tagged 1-5,10,20 -- WBR, Vadim Goncharov