Date: Mon, 24 Jan 2000 23:03:59 -0500 (EST) From: "Matthew N. Dodd" <winter@jurai.net> To: Alfred Perlstein <bright@wintelcom.net> Cc: current@FreeBSD.ORG Subject: Re: sys/net/bridge.c IPFIREWALL & DUMMYNET? WTF? Message-ID: <Pine.BSF.4.21.0001242303160.462-100000@sasami.jurai.net> In-Reply-To: <20000124190641.R26520@fw.wintelcom.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 24 Jan 2000, Alfred Perlstein wrote: > I'm not sure what your proposing, if it's removing BRIDGE support from > the kernel, I'd have to object. BRIDGE enables me to run a transparent > firewall without worrying about routing issues, just drop a machine > with BRIDGE and IPFIREWALL in between two points and everything is ok. > > However enable a DIVERT socket, and it all goes to hell last i checked. > > Anyhow, can you clarify? Take a look at the code in question. There has got to be a better solution than duplicating packet-unrolling code that makes bad assumptions about mbuf layouts. -- | Matthew N. Dodd | '78 Datsun 280Z | '75 Volvo 164E | FreeBSD/NetBSD | | winter@jurai.net | 2 x '84 Volvo 245DL | ix86,sparc,pmax | | http://www.jurai.net/~winter | This Space For Rent | ISO8802.5 4ever | To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0001242303160.462-100000>