Diverting sockets and streams
jakub
jakub.bednar at avg.com
Wed Nov 4 16:50:03 UTC 2009
Hi list,
I have a newbie question about divert sockets but I can't find a direct
answer.
I have a rule like this:
ipfw add divert 5555 tcp from me to any 80 keep-state
If I understand it correctly, in order to check the data stream properly
I have to deal with:
1. packet reordering
2. packet duplication
so basically I have to implement part of the TCP stack in my app.
I don't have to bother with fragmentation (according to man pages).
I won't be able to understand IPSec packets as I will get encrypted IP
frames.
Am I correct? Or can you please tell me how it really works?
Thanks a lot,
Jakub
More information about the freebsd-ipfw
mailing list