Do pfil(9) hooks receive TCP retransmissions?
R. Tyler Croy
tyler at monkeypox.org
Mon Nov 25 18:19:38 UTC 2013
I'm looking at the pfil(9) interface to accomplish some packet inspection
tasks, but the man page leaves some ambiguity in this case.
If the hooks are not invoked multiple times for retransmissions then I can
imagine it being relatively "simple" to implement a basic firewall with these
hooks without implementing loads of state tracking for packets.
I would appreciate any guidance the list can offer on using pfil(9) :)
Cheers
- R. Tyler Croy
--------------------------------------
Code: https://github.com/rtyler
Chatter: https://twitter.com/agentdero
rtyler at jabber.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: Digital signature
URL: <http://lists.freebsd.org/pipermail/freebsd-hackers/attachments/20131125/7b831dfa/attachment.sig>
More information about the freebsd-hackers
mailing list