RFC: ported NetBSD if_bridge
Gleb Smirnoff
glebius at cell.sick.ru
Sat Apr 17 01:36:16 PDT 2004
On Sat, Apr 17, 2004 at 03:17:42AM -0500, Mark Nipper wrote:
M> Which, incidentally, was why I chose OpenBSD over FreeBSD
M> for the Snort box/firewall I was working on. The bridge
M> manipulations made perfect sense the first time I looked at them
M> and PF did everything it could normally do (including the
M> redirects to localhost), even over a bridged interface. I even
M> ended up in a debate with a die hard FreeBSD'er who was mumbling
M> about whipping up some code to provide similar functionality with
M> ng. And I was like great, then go code it! I'll just start
M> implementing this other solution now which already works and
M> required no coding on my part, which admittedly, is not my strong
M> suit. Needless to say, I was finished first.
You can play with ng_etf/ng_tee/ng_socket/ng_ksocket to inject
traffic from bridge into userland towards snort.
Just sit some time thinking of netgraph nodes and you'll find solution.
--
Totus tuus, Glebius.
GLEBIUS-RIPN GLEB-RIPE
More information about the freebsd-current
mailing list