From owner-freebsd-hackers Sun May 28 21:31:59 2000 Delivered-To: freebsd-hackers@freebsd.org Received: from kbgroup.co.nz (gateway.kbgroup.co.nz [203.96.151.81]) by hub.freebsd.org (Postfix) with ESMTP id 6E71437BBA2 for ; Sun, 28 May 2000 21:31:40 -0700 (PDT) (envelope-from dave.preece@kbgroup.co.nz) Received: from kb_exchange.kbgroup.co.nz ([202.202.203.10]) by gateway.kbgroup.co.nz with ESMTP id <115203>; Mon, 29 May 2000 16:46:44 +1200 Received: by internet.kbgroup.co.nz with Internet Mail Service (5.5.2650.21) id ; Mon, 29 May 2000 16:40:22 +1200 Message-ID: <67B808B0DD93D211ABEE0000B498356B2B4E95@internet.kbgroup.co.nz> From: Dave Preece To: Julian Elischer Cc: freebsd-hackers@freebsd.org Subject: RE: Re-inserting packets into firewall. MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" Date: Mon, 29 May 2000 16:46:44 +1200 Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Julian, Many thanks! > If you reinsert the packet and use the same sockaddr that > you received, > it should insert the packet at the first rule number GREATER THAN the > rule that diverted it. The rule number of diversion is stored in > the 'port' field of the sockaddr. Loud clang noise as penny drops! I has been looking for this in the received IP packet, a eureka moment later and I realised what the sockaddr* in recvfrom is for. > man 4 divert from memory.. I should learn to apropos, eh? Too much time with NT, I'm afraid. Still, I am learning. > also look at the natd program Have been, it's been a huge help. Thanks again, Dave :) > __--_|\ Julian Elischer > / \ julian@elischer.org > ( OZ ) World tour 2000 > ---> X_.---._/ presently in: Perth > v Presently in: Wellington NZ. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message