From owner-freebsd-hackers Sun Jul 6 20:37:27 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id UAA21322 for hackers-outgoing; Sun, 6 Jul 1997 20:37:27 -0700 (PDT) Received: from alpha.xerox.com (alpha.Xerox.COM [13.1.64.93]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id UAA21313; Sun, 6 Jul 1997 20:37:16 -0700 (PDT) Received: from crevenia.parc.xerox.com ([13.2.116.11]) by alpha.xerox.com with SMTP id <15640(2)>; Sun, 6 Jul 1997 20:36:16 PDT Received: from localhost by crevenia.parc.xerox.com with SMTP id <177512>; Sun, 6 Jul 1997 20:36:02 -0700 To: nsayer@quack.kfu.com cc: fenner@freebsd.org (Bill Fenner), joerg@freebsd.org, jkh@freebsd.org, hackers@freebsd.org Subject: Re: kern/3446 In-reply-to: Your message of "Sun, 06 Jul 97 15:39:44 PDT." <199707062239.PAA26655@quack.kfu.com> Date: Sun, 6 Jul 1997 20:35:58 PDT From: Bill Fenner Message-Id: <97Jul6.203602pdt.177512@crevenia.parc.xerox.com> Sender: owner-hackers@freebsd.org X-Loop: FreeBSD.org Precedence: bulk nsayer@quack.kfu.com wrote: >I don't know how so many duplicates got made. I believe I sent this >in a total of twice. The GNATS system was going through a strange period right around the time that this PR was submitted, and a lot of PR's got duplicated. >I must protest in the strongest possible terms the closure without >action of this PR. I'm sorry, I erred in not including the current status when I closed the PR. I believe you will find that both my suggestion (sending a RST) and your suggestion (sending a host unreachable) are possible using the new ipfw code in the kernel; the piece of code that you suggested patching now looks like icmp_error(*m, ICMP_UNREACH, rule->fw_reject_code, 0L, 0); implying that you can set fw_reject_code to ICMP_UNREACH_HOST if you want. It should probably normally be set to ICMP_UNREACH_FILTER_PROHIB (which doesn't have the ill effects that ICMP_UNREACH_PORT does on SunOS). Bill