ipfw: ouch!, skip past end of rules, denying packet
Louis A. Mamakos
louie at TransSys.COM
Sat May 8 19:08:15 PDT 2004
Not to hijack the thread here, but if you're looking at this code, it
would be nice if the logic that the ipfw "queue" command used was
similar to "divert"; where processing picks up at the next higher
rule number rather than the next rule (which might be numbered the
same.)
I'd like to have a bunch of queue commands in a row (perhaps with less
specific matching criteria in successive rules) and know that if they're
all numbered the same, only the first one will match.
louie
More information about the freebsd-ipfw
mailing list