dragonflybsd's ipfw
Sato Kentney
satokentney at gmail.com
Mon Jan 19 05:12:25 UTC 2015
Hi,
I get below from another email this morning, the ipfw can add dynamic rules
according to below email.
*You can manually insert a state as below and the state will be maintain by
ipfw itself.*
*ipfw state add rulenum 100 udp 192.168.1.1:0
<http://192.168.1.1:0/> 8.8.8.8:53 <http://8.8.8.8:53/> expiry +600*
*so you dont need to implement the logic to maintain the IP addresses or
configure any crontab to remove..*
*different state can have different expiry or "life time"*
ありがとう
佐藤柯德
2014-11-17 17:07 GMT+08:00 Ian Smith <smithi at nimnet.asn.au>:
> On Mon, 17 Nov 2014 15:48:13 +0800, Sato Kentney wrote:
>
> > I saw a email in dragonflybsd email list, someone is doing this!
> > http://www.dragonflybsd.org/docs/ipfw2/
>
> We've had 'ipfw2' for a very long while. I couldn't help wondering why
> DF wouldn't just import our many years of development and experience
> rather than using bycn82's 'rewrite'? .. but DF already has ipfw2:
>
> http://leaf.dragonflybsd.org/cgi/web-man?command=ipfw§ion=ANY
>
> man page dated October 2008. Before tables, in-kernel NAT, later
> dummynet updates and no doubt more. So why not start from there?
>
> cheers, Ian
>
More information about the freebsd-net
mailing list