IPFW: more "orthogonal? state operations, push into 11?
Jan Bramkamp
crest at rlwinm.de
Wed Jun 8 09:28:13 UTC 2016
On 07/06/16 10:00, Andrey V. Elsukov wrote:
> On 07.06.16 09:31, wishmaster wrote:
>>> With the following patch you will be able create two different states, I
>>> think, and solve your task with NAT and dynamic rules:
>>> https://reviews.freebsd.org/D6674
>>
>> Will there be the patch in the 11-RELEASE?
>
> Hi,
>
> there are three patches for ipfw, that I want to commit:
> https://reviews.freebsd.org/D6420
> https://reviews.freebsd.org/D6434
> https://reviews.freebsd.org/D6674
>
> But we are in code slush and there aren't any positive review yet. So, I
> guess they will be committed only after 11.0 would be branched.
To bad. Those all look very useful and and together would enable me to
use my FreeBSD jail hosts for all packet filtering instead of running
the traffic through a OpenBSD bhyve guest on each jail host.
More information about the freebsd-ipfw
mailing list