From owner-freebsd-net@FreeBSD.ORG  Fri Sep 12 06:12:31 2008
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 3471D1065697
	for <freebsd-net@freebsd.org>; Fri, 12 Sep 2008 06:12:31 +0000 (UTC)
	(envelope-from julian@elischer.org)
Received: from outQ.internet-mail-service.net (outq.internet-mail-service.net
	[216.240.47.240])
	by mx1.freebsd.org (Postfix) with ESMTP id 168A98FC26
	for <freebsd-net@freebsd.org>; Fri, 12 Sep 2008 06:12:31 +0000 (UTC)
	(envelope-from julian@elischer.org)
Received: from idiom.com (mx0.idiom.com [216.240.32.160])
	by out.internet-mail-service.net (Postfix) with ESMTP id 9024B2496;
	Thu, 11 Sep 2008 23:12:30 -0700 (PDT)
Received: from julian-mac.elischer.org (localhost [127.0.0.1])
	by idiom.com (Postfix) with ESMTP id 0E3992D600D;
	Thu, 11 Sep 2008 23:12:30 -0700 (PDT)
Message-ID: <48CA084D.1050406@elischer.org>
Date: Thu, 11 Sep 2008 23:12:29 -0700
From: Julian Elischer <julian@elischer.org>
User-Agent: Thunderbird 2.0.0.16 (Macintosh/20080707)
MIME-Version: 1.0
To: "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net>
References: <48C97AB3.6040907@elischer.org>
	<20080912054832.Q65801@maildrop.int.zabbadoz.net>
In-Reply-To: <20080912054832.Q65801@maildrop.int.zabbadoz.net>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: FreeBSD Net <freebsd-net@freebsd.org>, ipfw@freebsd.org
Subject: Re: anyone have a netgraph node to do ipfw filtering?
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 12 Sep 2008 06:12:31 -0000

Bjoern A. Zeeb wrote:
> On Thu, 11 Sep 2008, Julian Elischer wrote:
> 
> Hi,
> 
>> I think someone sent me a link to an ng_ipfw_filter node once
>> but I've lost it...
>>
>> (I think it was called ng_ipfw but that name is now taken by the
>> netgraph/ipfw 'ipfw netgraph' packet divert option).
>>
>> Something that lets you do ipfw filtering on packets as they
>> travel across a graph.
>>
>> As I said,I've seen one but lost it...
> 
> I could be wrong but did you mean?
> http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/netgraph/ng_ipfw.c
> 


no that's the one I refer to in themail wiich is the inverse of what I 
want


that one allows ipfw to send things to netgraph. I want one
to allow a netgraph graph to filter things with ipfw...