From owner-freebsd-questions@FreeBSD.ORG Wed Apr 15 14:29:32 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 6E60C1065673 for ; Wed, 15 Apr 2009 14:29:32 +0000 (UTC) (envelope-from kes-kes@yandex.ru) Received: from forwards6.yandex.ru (forwards6.yandex.ru [77.88.61.38]) by mx1.freebsd.org (Postfix) with ESMTP id 1D9978FC15 for ; Wed, 15 Apr 2009 14:29:32 +0000 (UTC) (envelope-from kes-kes@yandex.ru) Received: from smtp18.yandex.ru (smtp18.yandex.ru [77.88.61.54]) by forwards6.yandex.ru (Yandex) with ESMTP id 7833CA8CB69 for ; Wed, 15 Apr 2009 18:17:47 +0400 (MSD) Received: from [193.41.172.38] ([193.41.172.38]:35784 "EHLO HOMEUSER" smtp-auth: "kes-kes" TLS-CIPHER: TLS-PEER-CN1: ) by mail.yandex.ru with ESMTP id S10436868AbZDOORk (ORCPT ); Wed, 15 Apr 2009 18:17:40 +0400 X-Yandex-TimeMark: 1239805060 X-Yandex-Spam: 1 X-Yandex-Front: smtp18 X-BornDate: 1149541200 X-Yandex-Karma: 0 X-Yandex-KarmaStatus: 0 X-MsgDayCount: 1 X-Comment: RFC 2476 MSA function at smtp18.yandex.ru logged sender identity as: kes-kes X-Nat-Received: from [192.168.9.80]:1172 [ident-empty] by SPAM FILTER: with TPROXY id 1239805117.14171 abuse-to kes-kes@yandex.ru Date: Wed, 15 Apr 2009 17:17:42 +0300 From: KES X-Mailer: The Bat! (v4.0.24) Professional Organization: SaftTen X-Priority: 3 (Normal) Message-ID: <1167150673.20090415171742@yandex.ru> To: freebsd-questions@freebsd.org In-Reply-To: <444863973520529021572@ipd-office> References: <444863973520529021572@ipd-office> MIME-Version: 1.0 Content-Type: text/plain; charset=windows-1251 Content-Transfer-Encoding: 8bit Subject: IPFW: table approvement X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: KES List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 15 Apr 2009 14:29:32 -0000 Hi. Is it right place to post ideas? If it is lets suggest next approvement IPFW has 'table' command each table entry has some 'tablearg' There are situations when you need each entry has multiple values. For example: #NAT table 1 add 10.0.1.0/24 1 table 1 add 10.0.2.0/24 2 #PIPE table 2 add 10.0.1.0/24 3 table 2 add 10.0.2.0/24 4 #tag table 3 add 10.0.1.0/24 7 table 4 add 10.0.2.0/24 9 ipfw add XXX tag tablearg all from table(1) to any ipfw add XXX nat tablearg all from table(2) to any ipfw add XXX pipe tablearg all from table(3) to any I will be best if it can be optimized as next: table 1 add 10.0.1.0/24 1 3 7 table 1 add 10.0.2.0/24 2 4 9 #user can name columns as: table 1 columns nat pipe tag #1. compatibility: first column can be used as usual ipfw add XXX tag tablearg all from table(1) to any #2. you may use value from second column of table entry as: ipfw add XXX nat tablearg(2) all from table(1) to any #3. you may use value by name ipfw add XXX pipe tablearg(pipe) all from table(1) to any #4. finally it will be good to apply multiple commands to one rule: ipfw add XXX pipe tablearg(pipe) nat tablearg(2) tag tablearg all from table(1) to any What do you think? -- С уважением, KES mailto:kes-kes@yandex.ru