ipfw2 logs to bpf (was Re: cvs commit: src/sbin/ipfw ipfw2.c...)

Poul-Henning Kamp phk at phk.freebsd.dk
Tue Dec 13 06:49:08 PST 2005

In message <20051213061503.A10373 at xorpc.icir.org>, Luigi Rizzo writes:

>talking about ipfw2, a couple of years ago i posted some code for 4.x
>to let ipfw2 "log" packets to a pseudo interface called /dev/ipfw0 so
>that people in need of detailed logging could just get it from
>there through tcpdump or whatever.

Isn't it easier to use ipfwpcap(8) and a divert socket ?

