ipfw dynamic rules
Michael Sierchio
kudzu at tenebras.com
Mon Mar 24 00:14:38 UTC 2014
On Sun, Mar 23, 2014 at 4:31 PM, Julian Elischer <julian at freebsd.org> wrote:
> but disabled rules still have a cost I believe as hey still need to be
> traversed,
> unless someone has been very smart..
This I did not know. I don't have many, but it's a small
disappointment, if true.
> It's a pitty that you need to do policy based routing only on input,
> as output packets are already past their routing decision.
> The 'fwd' rule can however sometimes be used later.
Agreed.
More information about the freebsd-ipfw
mailing list