Date: Fri, 2 Feb 1996 03:28:01 +1100 (EST) From: michael butler <imb@scgt.oz.au> To: phk@critter.tfs.com (Poul-Henning Kamp) Cc: current@FreeBSD.ORG Subject: Re: ip_fw ordering of rules.. Message-ID: <199602011628.DAA14231@asstdc.scgt.oz.au> In-Reply-To: <8371.823178002@critter.tfs.com> from "Poul-Henning Kamp" at Feb 1, 96 01:33:22 pm
next in thread | previous in thread | raw e-mail | index | archive | help
Poul-Henning Kamp writes: > Does anybody but me find the ordering IP_FW does weird ? Yes ! > I'd like to kick it out entirely, but at least an option to > disable it is in order... > What do other users of it think ? I couldn't use FreeBSD without it .. no .. maybe that's a bit strong .. I'd just have to learn a bit more about Cisco's access-lists :-) However, the order rearrangement forces a particular strategy when building ipfw scripts that requires considerable patience by virtue of not always producing the expected (and desired) results. On the other side, I understand that searching a rule tree similar to that found in the routing tables is of considerable performance advantage as compared to the traversal a (possibly lengthy) singly linked list .. It's swings and roundabouts, michael
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199602011628.DAA14231>