ipfw: reset tcp

Luigi Rizzo rizzo at icir.org
Thu May 13 01:23:45 PDT 2004


On Thu, May 13, 2004 at 05:00:47PM +0800, Eugene Grosbein wrote:
> Hi!
> 
> When a rule 'reset tcp' matches, a kernel generates new TCP packet.
> Will it have to go through ipfw list (from the beginning or not)?

ipfw2 uses an mbuf flag to bypass the firewall - I am not sure if i
only used it for the keepalives or also for TCP reset packets

cheers
luigi


More information about the freebsd-ipfw mailing list