[Bug 237973] pf: implement egress keyword to simplify rules across different hardware

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=237973

--- Comment #16 from Alexander V. Chernikov <melifaro@FreeBSD.org> ---
(In reply to Goran Mekić from comment #15)
IIRC ipfw doesn't do anything with the groups. It does have interface tracker,
which is used to maintain efficient lookup for interface-name tables.

Speaking of the grouping - there are many variants of grouping that may take
different options into account. For some (bridge, epair) FIB isn't relevant at
all. I'd really prefer to have as little business logic in the kernel as
possible and leave it to the applications.
For example, nothing stops someone from writing a small rtsock monitor script
that tracks per-fib default route and assigns "egress_fibX" groups to the
relevant interfaces.

-- 
You are receiving this mail because:
You are the assignee for the bug.