Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 21 Apr 1998 16:31:13 -0700
From:      Julian Elischer <julian@whistle.com>
To:        Eivind Eklund <eivind@yes.no>
Cc:        Julian Elischer <julian@FreeBSD.ORG>, cvs-committers@FreeBSD.ORG, cvs-all@FreeBSD.ORG, cvs-sys@FreeBSD.ORG
Subject:   Re: cvs commit: src/sys/netinet ip_fw.c
Message-ID:  <353D2C41.1F1A7590@whistle.com>
References:  <199804211854.LAA01853@freefall.freebsd.org> <19980422000150.56907@follo.net>

next in thread | previous in thread | raw e-mail | index | archive | help
Eivind Eklund wrote:
> 
> On Tue, Apr 21, 1998 at 11:54:56AM -0700, Julian Elischer wrote:
> > julian      1998/04/21 11:54:55 PDT
> >
> >   Modified files:
> >     sys/netinet          ip_fw.c
> >   Log:
> >   Remove the artificial limit on the size of the ipfw filter structure.
> >   This allows the addition of extra fields if we need them (I have plans).
> 
> This still doesn't solve the problems with IPFW (foremost, that
> extending the structure blow the userland interface).

why?
if you recompile it with a new structure...

> 
> We need a new interface - I proposed an interface to -hackers some
> time back, and got exactly NO response :-(
> 
> Eivind.

I agree on the new interface, but the limit on the structure size
was that each file rule had to fit into an mbuf.
this removes that limit and should look identical to the user 
land program.
I was considering using IOCTLS instead..
what was your suggestion?



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?353D2C41.1F1A7590>