From owner-cvs-src-old@FreeBSD.ORG  Thu Dec 17 23:11:30 2009
Return-Path: <owner-cvs-src-old@FreeBSD.ORG>
Delivered-To: cvs-src-old@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 449C61065787
	for <cvs-src-old@freebsd.org>; Thu, 17 Dec 2009 23:11:30 +0000 (UTC)
	(envelope-from luigi@FreeBSD.org)
Received: from repoman.freebsd.org (repoman.freebsd.org
	[IPv6:2001:4f8:fff6::29])
	by mx1.freebsd.org (Postfix) with ESMTP id 2AE928FC0C
	for <cvs-src-old@freebsd.org>; Thu, 17 Dec 2009 23:11:30 +0000 (UTC)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.14.3/8.14.3) with ESMTP id nBHNBUXa072615
	for <cvs-src-old@freebsd.org>; Thu, 17 Dec 2009 23:11:30 GMT
	(envelope-from luigi@repoman.freebsd.org)
Received: (from svn2cvs@localhost)
	by repoman.freebsd.org (8.14.3/8.14.3/Submit) id nBHNBUaX072614
	for cvs-src-old@freebsd.org; Thu, 17 Dec 2009 23:11:30 GMT
	(envelope-from luigi@repoman.freebsd.org)
Message-Id: <200912172311.nBHNBUaX072614@repoman.freebsd.org>
X-Authentication-Warning: repoman.freebsd.org: svn2cvs set sender to
	luigi@repoman.freebsd.org using -f
From: Luigi Rizzo <luigi@FreeBSD.org>
Date: Thu, 17 Dec 2009 23:11:16 +0000 (UTC)
To: cvs-src-old@freebsd.org
X-FreeBSD-CVS-Branch: HEAD
Subject: cvs commit: src/sys/netinet/ipfw ip_fw2.c ip_fw_log.c
 ip_fw_private.h
X-BeenThere: cvs-src-old@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: **OBSOLETE** CVS commit messages for the src tree
	<cvs-src-old.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src-old>,
	<mailto:cvs-src-old-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-src-old>
List-Post: <mailto:cvs-src-old@freebsd.org>
List-Help: <mailto:cvs-src-old-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src-old>,
	<mailto:cvs-src-old-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Dec 2009 23:11:30 -0000

luigi       2009-12-17 23:11:16 UTC

  FreeBSD src repository

  Modified files:
    sys/netinet/ipfw     ip_fw2.c ip_fw_log.c ip_fw_private.h 
  Log:
  SVN rev 200654 on 2009-12-17 23:11:16Z by luigi
  
  Add some experimental code to log traffic with tcpdump,
  similar to pflog(4).
  To use the feature, just put the 'log' options on rules
  you are interested in, e.g.
  
          ipfw add 5000 count log ....
  
  and run
          tcpdump -ni ipfw0 ...
  
  net.inet.ip.fw.verbose=0 enables logging to ipfw0,
  net.inet.ip.fw.verbose=1 sends logging to syslog as before.
  
  More features can be added, similar to pflog(), to store in
  the MAC header metadata such as rule numbers and actions.
  Manpage to come once features are settled.
  
  Revision  Changes    Path
  1.31      +3 -2      src/sys/netinet/ipfw/ip_fw2.c
  1.3       +75 -1     src/sys/netinet/ipfw/ip_fw_log.c
  1.4       +1 -0      src/sys/netinet/ipfw/ip_fw_private.h