Date: Sat, 23 Mar 2002 18:50:03 -0800 (PST) From: "Crist J. Clark" <cjc@FreeBSD.ORG> To: freebsd-bugs@FreeBSD.org Subject: Re: conf/36230: ipfw traffic shaper with DHCP env. Message-ID: <200203240250.g2O2o3s84693@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR conf/36230; it has been noted by GNATS.
From: "Crist J. Clark" <cjc@FreeBSD.ORG>
To: Alex de Kruijff <akruijff@dds.nl>
Cc: freebsd-gnats-submit@FreeBSD.ORG
Subject: Re: conf/36230: ipfw traffic shaper with DHCP env.
Date: Sat, 23 Mar 2002 18:42:51 -0800
On Sat, Mar 23, 2002 at 06:34:03AM -0800, Alex de Kruijff wrote:
[snip]
> I like to run a ipfw traffic shaper on a network with a DHCP server. The DHCP server updates the DNS with a given hostname (+ suffix). The ip-address the client receives can change in time but the hostname do not. The ipfw rules however keep the old values resulting in a rules that do not apply.
> >How-To-Repeat:
> # add alex to the DNS (nomaly you will let the DHCP do this for you)
>
> ipfw add 100 pipe 1 ip from alex to any via ed0
> ipfw add 200 pipe 2 ip from any to alex via ed0
>
> # change the ip address of the host alex.
> >Fix:
> Save the URL, if given, instead of the ip-address.
How often do you check that the hostname to IP address mapping has
changed? For every packet? Way too expensive. Every minute? Every five
minutes? Why not just run a cron job to update your rules then?
I don't see a practical way to implement this, do you?
--
Crist J. Clark | cjclark@alum.mit.edu
| cjclark@jhu.edu
http://people.freebsd.org/~cjc/ | cjc@freebsd.org
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-bugs" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200203240250.g2O2o3s84693>