From owner-freebsd-ipfw@FreeBSD.ORG Sat Jul 16 16:23:49 2005 Return-Path: X-Original-To: freebsd-ipfw@freebsd.org Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B42F516A41C; Sat, 16 Jul 2005 16:23:49 +0000 (GMT) (envelope-from dionch@freemail.gr) Received: from smtp.freemail.gr (smtp.freemail.gr [213.239.180.35]) by mx1.FreeBSD.org (Postfix) with ESMTP id 203F443D46; Sat, 16 Jul 2005 16:23:48 +0000 (GMT) (envelope-from dionch@freemail.gr) Received: by smtp.freemail.gr (Postfix, from userid 101) id 3C6D8BC0AF; Sat, 16 Jul 2005 19:23:45 +0300 (EEST) Received: from R3B (unknown [62.38.168.175])by smtp.freemail.gr (Postfix) with ESMTP id 0FB84BC0A6; Sat, 16 Jul 2005 19:23:43 +0300 (EEST) Message-ID: <006901c58a22$b37e30c0$0100000a@R3B> From: "Chris Dionissopoulos" To: "Max Laier" , References: <001c01c58a17$5dbe4a40$0100000a@R3B> <200507161740.38234.max@love2party.net> Date: Sat, 16 Jul 2005 19:23:27 +0300 MIME-Version: 1.0 Content-Type: text/plain;format=flowed;charset="utf-8";reply-type=original Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2900.2180 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180 Cc: freebsd-net@freebsd.org Subject: Re: Traffic quota features in IPFW X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Chris Dionissopoulos List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 16 Jul 2005 16:23:49 -0000 >> Hi ppl, ( and sorry for cross posting) >> >> I review Andrey's Elsukov patch for adding "bound" support in ipfw, and i >> decide to push a little forward this feature. >Sorry to be blunt, but I don't see the point in this feature nor do I think >it's a good idea. All it does is adding overhead to every packet that is >processed by IPFW. You might argue that this overhead is fairly little, but >if you combine the last ten "neat to have though not really necessary" >features this adds up. Also the code is getting more and more hacked up. If your rules are not using this option it doesn't adds any overhead. If your rules using it , it adds as much overhead as any other option you use. Yes, we see too much patching in ipfw the last 2 months, but I think that ipfw code still remains plain and clear. >Your feature might be nicely done, but it adds to the main switch-loops >making them more and more unreadable until it all falls over and nobody is >willing to touch the code anymore. I have seen (too) much ipfw code lately >while tieing together lose ends in the IPv6-import and it's already messy >enough. This is the way ipfw is written all these years. I dont know if my codind skills are not enough, but right now I cannot see any other way to add new features in ipfw, without using this huge switch checks. IMHO, ipfw must be hardly rewriten to remove these switch checks. But again, my opinion is that ipfw's checking is fast enough as is. Maybe I'm wrong. >I urge you to reconsider if we really need this. If you think we can't live >without it, it'd be nice if you could come up with a clean(er) way to extend >IPFW with additional stuff like this without impact to performance and >maintainability for the common case (without the magic foobar-option of the >day). Thanks. I agree with you, a good reason to drop this patch is if it is useless to the most of the ipfw users. If I 'm the only one (and Andrey) who need this, just ignore it. That's why I post it here. >BTW: This function can be done with a three line awk-skript without any effect >on performance. Of course you will lose some precision, but I don't see >applications where you have to be *that* percise. Hmm, do you have a small example. I 'm really intrested for this, and I can't think any. TIA, Chris. ____________________________________________________________________ http://www.freemail.gr - δωρεάν υπηρεσία ηλεκτρονικού ταχυδρομείου. http://www.freemail.gr - free email service for the Greek-speaking.