From owner-freebsd-hackers Sat Apr 5 20:07:45 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id UAA20388 for hackers-outgoing; Sat, 5 Apr 1997 20:07:45 -0800 (PST) Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA20383 for ; Sat, 5 Apr 1997 20:07:39 -0800 (PST) Received: (from smap@localhost) by whistle.com (8.7.5/8.6.12) id UAA14692; Sat, 5 Apr 1997 20:07:08 -0800 (PST) Received: from bubba.whistle.com(207.76.205.7) by whistle.com via smap (V1.3) id sma014690; Sat Apr 5 20:06:53 1997 Received: (from archie@localhost) by bubba.whistle.com (8.7.5/8.6.12) id UAA06266; Sat, 5 Apr 1997 20:06:52 -0800 (PST) From: Archie Cobbs Message-Id: <199704060406.UAA06266@bubba.whistle.com> Subject: Re: Uses for divert sockets? In-Reply-To: <199704041820.KAA19125@lister.bogon.net> from Wes Santee at "Apr 4, 97 10:20:26 am" To: wes@bogon.net (Wes Santee) Date: Sat, 5 Apr 1997 20:06:52 -0800 (PST) Cc: hackers@freebsd.org X-Mailer: ELM [version 2.4ME+ PL25 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-hackers@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > The new ipdivert sockets in 2.2 sound great, but I'm not quite sure > just what I can accomplish with them outside of address translation. > Is it just for packet altering, or can entire connections be > redirected? > > For example, let's say I want some incomming connections to port 25 to > be diverted to another "special" MTA running on another port (to deal > with known spam sites "properly", for instance). Is it possible using > divert and ipfw to do this? Or is divert pretty much only for dealing > with raw IP packets that get injected back into the stream to end up > at their intended destination? You should be able to do this... pretty much anything is "possible" because you can completely change a packet, drop it, optionally have it bypass the normal routing code, create new packets, etc... -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com