(review request) ipfw and ipsec processing order for outgoing packets
From: Joost Bekkers (joost_at_jodocus.org)
Date: 11/29/04
- Previous message: tommy barabai: "Networking and TCP/IP with FreeBSD"
- Next in thread: Andre Oppermann: "Re: (review request) ipfw and ipsec processing order for outgoingpackets"
- Reply: Andre Oppermann: "Re: (review request) ipfw and ipsec processing order for outgoingpackets"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Mon, 29 Nov 2004 11:09:49 +0100 To: freebsd-net@freebsd.org
Hi
A while ago there was a discussion about passing packet through pfil before
they are processed by ipsec. I've posted a rough patch back then and I've
finally had time to polish it.
Although the changes seem very invasive at first glance, the .o files created
are identical as long as IPSEC_FILTERGIF is not defined. With FAST_IPSEC diff(1)
will tell you otherwise, but that is due to changed linenumbers which are used
as arguments in two places. I've checked for differences by disassembling (objdump -d)
the .o files.
The attached patch is against 5.3R
I'm running it myself with FAST_IPSEC. The combination of this patch and the kame
ipsec could do with some more testing.
-- greetz Joost joost@jodocus.org
_______________________________________________
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
- text/plain attachment: ipsec_filtergif.diff
- Previous message: tommy barabai: "Networking and TCP/IP with FreeBSD"
- Next in thread: Andre Oppermann: "Re: (review request) ipfw and ipsec processing order for outgoingpackets"
- Reply: Andre Oppermann: "Re: (review request) ipfw and ipsec processing order for outgoingpackets"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
|
