From owner-cvs-src@FreeBSD.ORG  Wed Jul 16 00:04:54 2003
Return-Path: <owner-cvs-src@FreeBSD.ORG>
Delivered-To: cvs-src@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id C914537B401; Wed, 16 Jul 2003 00:04:54 -0700 (PDT)
Received: from mail.broadpark.no (mail.broadpark.no [217.13.4.2])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id A889943F75; Wed, 16 Jul 2003 00:04:53 -0700 (PDT)
	(envelope-from des@des.no)
Received: from smtp.des.no (37.80-203-228.nextgentel.com [80.203.228.37])
	by mail.broadpark.no (Postfix) with ESMTP
	id D38717906F; Wed, 16 Jul 2003 09:04:52 +0200 (MEST)
Received: by smtp.des.no (Pony Express, from userid 666)
	id 8BE3B9605E; Wed, 16 Jul 2003 09:04:52 +0200 (CEST)
Received: from dwp.des.no (dwp.des.no [10.0.0.4])
	by smtp.des.no (Pony Express) with ESMTP
	id 6012C95F64; Wed, 16 Jul 2003 09:04:50 +0200 (CEST)
Received: by dwp.des.no (Postfix, from userid 2602)
	id 2BA29B822; Wed, 16 Jul 2003 09:04:50 +0200 (CEST)
To: Luigi Rizzo <luigi@FreeBSD.org>
References: <200307152307.h6FN7YcT018837@repoman.freebsd.org>
From: des@des.no (Dag-Erling =?iso-8859-1?q?Sm=F8rgrav?=)
Date: Wed, 16 Jul 2003 09:04:49 +0200
In-Reply-To: <200307152307.h6FN7YcT018837@repoman.freebsd.org> (Luigi
 Rizzo's message of "Tue, 15 Jul 2003 16:07:34 -0700 (PDT)")
Message-ID: <xzpn0ffrlym.fsf@dwp.des.no>
User-Agent: Gnus/5.090024 (Oort Gnus v0.24) Emacs/21.2 (berkeley-unix)
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: quoted-printable
X-Spam-Status: No, hits=-3.0 required=8.0
	tests=EMAIL_ATTRIBUTION,IN_REP_TO,QUOTED_EMAIL_TEXT,REFERENCES,
	      REPLY_WITH_QUOTES,USER_AGENT_GNUS_UA
	version=2.55
X-Spam-Level: 
X-Spam-Checker-Version: SpamAssassin 2.55 (1.174.2.19-2003-05-19-exp)
cc: cvs-src@FreeBSD.org
cc: src-committers@FreeBSD.org
cc: cvs-all@FreeBSD.org
Subject: Re: cvs commit: src/sys/netinet ip_fw.h ip_fw2.c
X-BeenThere: cvs-src@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: CVS commit messages for the src tree <cvs-src.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src>,
	<mailto:cvs-src-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-src>
List-Post: <mailto:cvs-src@freebsd.org>
List-Help: <mailto:cvs-src-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src>,
	<mailto:cvs-src-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 16 Jul 2003 07:04:55 -0000

Luigi Rizzo <luigi@FreeBSD.org> writes:
>   This implement a flexible form of "persistent rules" which you might
>   want to have available even after an "ipfw flush".
>   Note that this change does not violate POLA, because you could not
>   use set 31 in a ruleset before this change.

This reminds me, is there a way to delete a keep-state rule without
also deleting the dynamic rules it spawned?

DES
--=20
Dag-Erling Sm=F8rgrav - des@des.no