Date: 24 Sep 2002 11:43:19 -0500 From: Kirk Strauser <kirk@strauser.com> To: freebsd-questions@freebsd.org Subject: Can IPFW keep state after a flush? Message-ID: <87n0q7l4ns.fsf@pooh.int>
next in thread | raw e-mail | index | archive | help
From what I can tell, ipfw's 'flush' command clears the ruleset *and* the current list of dynamic (keep-state) rules. Is there any way to ask ipfw to flush only the ruleset, but to leave the dynamic rules intact? Ideally, ipfw could be made to compare the curreny dynamic rules against any new rules that were added, which would allow a sysadmin to implement a new ruleset on an already-running system without disturbing any current valid connections. Is such a thing possible, or am I dreaming? -- Kirk Strauser In Googlis non est, ergo non est. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?87n0q7l4ns.fsf>