ipfw: reset tcp
Gleb Smirnoff
glebius at cell.sick.ru
Thu May 13 02:11:38 PDT 2004
On Thu, May 13, 2004 at 05:55:05PM +0800, Eugene Grosbein wrote:
E> Please make it possible (using sysctl or any other mean) to
E> disable M_SKIP_FIREWALL for such packets (I suppose 'unreach' rules
E> are affected too). I DO need to process ALL outgoing packets.
E> For exapmle, I must use 'ipfw fwd' (to implement policy routing)
E> for the packets with source IP like this.
Better idea is to separate policy routing decisions from packet
filter. However, implementing this is much more difficult, than
just removing one string from send_pkt().
--
Totus tuus, Glebius.
GLEBIUS-RIPN GLEB-RIPE
More information about the freebsd-ipfw
mailing list