From owner-freebsd-ipfw@FreeBSD.ORG Sat Aug 2 11:47:03 2003 Return-Path: Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E2D4637B401 for ; Sat, 2 Aug 2003 11:47:03 -0700 (PDT) Received: from exchange.wan.no (exchange.wan.no [80.86.128.88]) by mx1.FreeBSD.org (Postfix) with ESMTP id BB1EC43FBD for ; Sat, 2 Aug 2003 11:47:02 -0700 (PDT) (envelope-from sten.daniel.sorsdal@wan.no) content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable X-MimeOLE: Produced By Microsoft Exchange V6.0.6249.0 Date: Sat, 2 Aug 2003 20:45:15 +0200 Message-ID: <0AF1BBDF1218F14E9B4CCE414744E70F1F3E29@exchange.wanglobal.net> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: Suggestion regarding a new option for IPFW2 Thread-Index: AcNYYE5M2mBgFj8ERV+E1hct+smoXAAxdysQ From: =?iso-8859-1?Q?Sten_Daniel_S=F8rsdal?= To: "Louis A. Mamakos" cc: freebsd-ipfw@freebsd.org Subject: RE: Suggestion regarding a new option for IPFW2 X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 02 Aug 2003 18:47:04 -0000 >=20 > TCP resets MUST already come with the source address rewritten=20 > otherwise it won't match up with the connection attempt on the > original host. If you look in ip_fw2.c: >=20 [snip] Yes, but if you read my original message i was referring to icmp=20 error messages as well, but thanks for clarifying/excluding the=20 tcp resets. - Sten