Re: Policy routing idea (Was: ipfw: Would it be possible to continue processing rest of rules after match ?)

• Previous message: Jeremie Le Hen: "Re: Policy routing idea (Was: ipfw: Would it be possible to continue processing rest of rules after match ?)"
• In reply to: Ari Suutari: "Re: Policy routing idea (Was: ipfw: Would it be possible to continue processing rest of rules after match ?)"
• Next in thread: Ari Suutari: "Re: Policy routing idea (Was: ipfw: Would it be possible to continue processing rest of rules after match ?)"
• Reply: Ari Suutari: "Re: Policy routing idea (Was: ipfw: Would it be possible to continue processing rest of rules after match ?)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Date: Wed, 22 Jun 2005 05:33:07 -0700
To: Ari Suutari <ari@suutari.iki.fi>

On Wed, Jun 22, 2005 at 01:40:35PM +0300, Ari Suutari wrote:
> Hi,
>
> Luigi Rizzo wrote:
> > i suggest to implement a new action 'setnexthop' which stores the
> > next hop as an MTAG with the packet (so it is preserved if the
> > packet gets passed to dummynet).
>
> I took a quick look at how ipfw forward has been implemented.
> It seems to use PACKET_TAG_IPFORWARD to store routing info.
> If I would implement "ipfw setnexthop" with a new MTAG it
> would duplicate very much code already present for PACKET_TAG_IPFORWARD.

yes i think you should reuse the tag, just add a new opcode so that
the action is attach the mtag to the mbuf if not there yet
(maybe override its content if you believe you could match multiple rules of
this type) and then continue processing as in a 'count' action.

        cheers
        luigi

> If I could reuse the same MTAG this would be easier to add, all
> that would be needed is a new opcode for ipfw (or am I missing
> something important ?)
>
> Ari S.
> _______________________________________________
> freebsd-net@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-net
> To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
_______________________________________________
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"

• Previous message: Jeremie Le Hen: "Re: Policy routing idea (Was: ipfw: Would it be possible to continue processing rest of rules after match ?)"
• In reply to: Ari Suutari: "Re: Policy routing idea (Was: ipfw: Would it be possible to continue processing rest of rules after match ?)"
• Next in thread: Ari Suutari: "Re: Policy routing idea (Was: ipfw: Would it be possible to continue processing rest of rules after match ?)"
• Reply: Ari Suutari: "Re: Policy routing idea (Was: ipfw: Would it be possible to continue processing rest of rules after match ?)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages Re: Policy routing idea (Was: ipfw: Would it be possible to continue processing rest of rules after ... >> yes i think you should reuse the tag, just add a new opcode so that ... >> the action is attach the mtag to the mbuf if not there yet ... (freebsd-net) Re: JSP tags and tag recycling ... > that is the JSP engine may reuse tag instances (the only guarantee you ... In part _because_ of tag reuse, it is *forbidden* by JSP for any ... tag handler state exposed as an attribute, whether optional or required, ... (comp.lang.java.programmer) Re: Policy routing idea (Was: ipfw: Would it be possible to continue processing rest of rules after ... Luigi Rizzo wrote: ... > i think it would be better to reuse the 'case TOK_FORWARD', ... > by changing the opcode and messages according to the actual command. ... (freebsd-net) Re: MX update ... John H Meyers wrote: ... MEVAL will find a tagged value with tag:D1: ... but you can reuse the formula "as is" ... (comp.sys.hp48)