Re: ipfilter and ipfw order.
From: Vlad GALU (vladgalu_at_gmail.com)
Date: 06/24/05
- Previous message: ming fu: "ipfilter and ipfw order."
- In reply to: ming fu: "ipfilter and ipfw order."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Fri, 24 Jun 2005 15:29:23 +0300 To: freebsd-net@freebsd.org
On 6/24/05, ming fu <fming@borderware.com> wrote:
> Hi,
>
> In the 4.x kernel, ipfilter was hardcoded before ipfw in the ip_input().
> However, in the 5.x kernel, they register themselve to the pfil hook. As
> there isn't a priority number during the hook up, looks like who ever
> register first get to filter the packet first.
>
> In case I want to preserve the 4.x behaviour of ipf before ipfw in the
> input path, how do I reliable achieve that.
Link ipfilter statically inside the kernel. Load ipfw as a module.
>
> Regards,
> Ming
> _______________________________________________
> freebsd-net@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-net
> To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
>
-- If it's there, and you can see it, it's real. If it's not there, and you can see it, it's virtual. If it's there, and you can't see it, it's transparent. If it's not there, and you can't see it, you erased it. _______________________________________________ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
- Previous message: ming fu: "ipfilter and ipfw order."
- In reply to: ming fu: "ipfilter and ipfw order."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
|
