Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 5 Oct 1998 16:45:18 -0300 (EST)
From:      Joao Carlos Mendes Luis <jonny@jonny.eng.br>
To:        Jeff@Wagsky.com (Jeff Kletsky)
Cc:        freebsd-stable@FreeBSD.ORG
Subject:   Re: ipfw SkipTo behavior changed
Message-ID:  <199810051945.QAA26791@roma.coe.ufrj.br>
In-Reply-To: <l03110701b23e9ec47f46@[192.168.6.3]> from Jeff Kletsky at "Oct 5, 98 09:15:45 am"

next in thread | previous in thread | raw e-mail | index | archive | help
#define quoting(Jeff Kletsky)
// In trying to resolve puzzling behavior on a "new" FreeBSD box
// (2.2.7-STABLE, cvsup as of 980929), it appears that the behavior of the
// SkipTo rules in ipfw/kernel have changed.  Previously a rule such as
// 
// 2200 skipto 3000 all from 127.0.0.1 to 127.0.0.1 recv lo0 in
// 
// would "skipto" the next-higher numbered rule in the list if 3000 did not
// exist.  This build seems to require that a rule 3000 explicitly exist.  If
// it does not exist, it proceeds as if rule 2200 is not matched.
// 
// Is this an "intentional" change in the firewall code?  If not, has a later
// release changed back to the older behavior?

IIRC Luigi has changed this behaviour together with the DUMMYNET
integration.  It was intentional, for code optimization.

					Jonny

--
Joao Carlos Mendes Luis            M.Sc. Student
jonny@jonny.eng.br                 Universidade Federal do Rio de Janeiro
"This .sig is not meant to be politically correct."

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199810051945.QAA26791>