I have four ideia for IPFW2
Luigi Rizzo
rizzo at icir.org
Tue Jul 15 10:15:23 PDT 2003
On Tue, Jul 15, 2003 at 12:06:46PM -0300, Diego Linke - GAMK wrote:
> Hi,
>
> > There is already room in the O_LOG command header so we do not need
> > to modify ip_fw[2].h to add a field in the structure (helps with
> > binary compatibility). In fact, this would allow different levels of
> > verbosity in the logs.
>
> I am sorry Luigi, but i not understand!
>
> We have that to modify struct ipfw_insn_log, to pass one flag saying that one determined rule has log extended.
you can use spare fields in ipfw_insn o; for that
cheers
luigi
> We add an variable for indentify extended logs per rule. See:
>
> typedef struct _ipfw_insn_log {
> ipfw_insn o;
> u_int32_t max_log; /* how many do we log -- 0 = all */
> u_int32_t log_left; /* how many left to log */
> u_int32_t extended; /* Extended logs */
> } ipfw_insn_log;
>
> I do not understand how make this without modify ip_fw.h file.
>
> Do you have some idea ?
>
> Thanks
>
> --
> [ Diego Linke - GAMK ]
> System/Network/Security Administrator
> E-Mail/Site: gamk at gamk.com.br - http://www.gamk.com.br
> Public Key: http://www.gamk.com.br/gamk.asc
> Phone Number: (+5541) 9967-3464
>
> _______________________________________________
> freebsd-ipfw at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw
> To unsubscribe, send any mail to "freebsd-ipfw-unsubscribe at freebsd.org"
More information about the freebsd-ipfw
mailing list