ipfw table expiry.. how to do it..?
Julian Elischer
julian at freebsd.org
Tue Sep 20 16:16:02 UTC 2016
On 11/09/2016 8:03 PM, Julian Elischer wrote:
>
> Unfortunately we don't have any timers on table entries, so it's not
> possible to see how long an entry has been in use, or idle.
>
>
> If I were to ha ve a captive portal, which placed the address of
> 'allowed' hosts into a table, we would have no way to time them out
> when they go idle. The omly thing you can do is throw away all the
> entries at some time, and force them to all log in again.
>
> Does anyone have any patches to add "access time" to table entries?
>
>
> I'm guessing the way it would need to be done now would be to use
> dynamic rules and having the syn packet of every session sent to
>
no takers?
More information about the freebsd-ipfw
mailing list