can ipfw check all permit rules without search termination?
s m
sam.gh1986 at gmail.com
Tue Dec 16 06:03:20 UTC 2014
hello guys,
thanks for your answers. you know, i have different services and each one
writes ipfw rules in different times. i want to aggregated all rules. i
mean if two rules which are written by two different services, have overlap
(for example rule number 222 permit packets with 192.168.5.5 src address
while rule number 225 permit packets with 192.168.5.5 src address and set
next-hop 192.168.10.2 for them), the rule which is more specified, match.
in my example, i want to rule number 222 match for packets.
in the other words, ipfw uses "first match win" search method. can i change
this method???
More information about the freebsd-questions
mailing list