From owner-freebsd-net@FreeBSD.ORG  Tue Feb  8 17:03:51 2011
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 2E4ED1065698
	for <freebsd-net@freebsd.org>; Tue,  8 Feb 2011 17:03:51 +0000 (UTC)
	(envelope-from julian@freebsd.org)
Received: from vps1.elischer.org (vps1.elischer.org [204.109.63.16])
	by mx1.freebsd.org (Postfix) with ESMTP id F29BD8FC1A
	for <freebsd-net@freebsd.org>; Tue,  8 Feb 2011 17:03:50 +0000 (UTC)
Received: from julian-mac.elischer.org (home-nat.elischer.org [67.100.89.137])
	(authenticated bits=0)
	by vps1.elischer.org (8.14.4/8.14.4) with ESMTP id p18H3eFp053298
	(version=TLSv1/SSLv3 cipher=DHE-RSA-CAMELLIA256-SHA bits=256 verify=NO);
	Tue, 8 Feb 2011 09:03:44 -0800 (PST)
	(envelope-from julian@freebsd.org)
Message-ID: <4D517775.6090107@freebsd.org>
Date: Tue, 08 Feb 2011 09:03:49 -0800
From: Julian Elischer <julian@freebsd.org>
User-Agent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X 10.4; en-US;
	rv:1.9.2.13) Gecko/20101207 Thunderbird/3.1.7
MIME-Version: 1.0
To: Sergey Matveychuk <sem@freebsd.org>
References: <4D4DCD1E.1050906@freebsd.org>	<AANLkTimtDegcGjzXatEOHjQR9GM_hD29ZiKnkT-zG1_S@mail.gmail.com>	<4D4DFC95.9010804@freebsd.org>	<4D501198.6090901@FreeBSD.org>	<4d516a6a.8937e30a.0996.2f26@mx.google.com>
	<4D51750A.3070303@FreeBSD.org>
In-Reply-To: <4D51750A.3070303@FreeBSD.org>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Cc: freebsd-net@freebsd.org, Rozhuk.IM@gmail.com
Subject: Re: divert rewrite
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 08 Feb 2011 17:03:51 -0000

> 08.02.2011 19:08, rozhuk.im@gmail.com wrote:
>> Did you try ng_ether + ng_ksocket?
>> It can translate Ethernet frames incapsulated to udp to user space 
>> receiver.
>
> The idea is catch packets from firewall (ng_ipfw, ng_nat was 
> mentioned by mistake) and pass them to user space module that do 
> some processing and puts back the packets into firewall (for rules 
> with `diverted' keyword).

yes, however did you try the ipfw netgraph keyword and the ng_ipfw  node?
I have also been wondering it it might not make sense to simpply 
replavce the diver code with
a netgraph equivalent..  Using the ng_ipfw node one can almost do it 
with no changes as it is.

>
> It works now for IPv4 with `divert' and doesn't with IPv6.

yes, I'm pondering the right fix for that..

> _______________________________________________
> freebsd-net@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-net
> To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
>