per-interface packet filters

Daniel Hartmeier daniel at benzedrine.cx
Mon Dec 13 09:44:45 PST 2004


On Mon, Dec 13, 2004 at 05:43:26PM +0100, Max Laier wrote:

> > I'm glad to see any constructive comments on plan.
> 
> Sorry, I don't see the point. If you are going to penalize the common case for 
> this I will object.

On the other hand, if there was a simple (and cheap) way to disable
packet filtering for arbitrary interfaces (for instance flag in struct
ifnet, like 'ifconfig lo0 no-pfil' or such), that could be useful in
cases like

  http://www.monkey.org/openbsd/archive/tech/0407/msg00061.html

Daniel


More information about the freebsd-net mailing list