From owner-freebsd-stable@FreeBSD.ORG  Fri Feb 17 15:14:22 2012
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
Delivered-To: freebsd-stable@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id EDF93106564A
	for <freebsd-stable@freebsd.org>; Fri, 17 Feb 2012 15:14:22 +0000 (UTC)
	(envelope-from fjwcash@gmail.com)
Received: from mail-vw0-f54.google.com (mail-vw0-f54.google.com
	[209.85.212.54])
	by mx1.freebsd.org (Postfix) with ESMTP id 9EAC78FC1A
	for <freebsd-stable@freebsd.org>; Fri, 17 Feb 2012 15:14:22 +0000 (UTC)
Received: by vbbfa15 with SMTP id fa15so3358870vbb.13
	for <freebsd-stable@freebsd.org>; Fri, 17 Feb 2012 07:14:22 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=mime-version:in-reply-to:references:date:message-id:subject:from:to
	:cc:content-type:content-transfer-encoding;
	bh=nq2K6qUA7YTZ/Kj3oUwi2f8oy+f8yhRZcP7qieWMcVA=;
	b=Fn6x/gSeUaKGZCCiD4FcmBjeLajG2x0biBbZ1XghTzzhaVg5tfXXghxy5icpyDoE0L
	945/7ZxBTVJzxBiFHG5/7bgw5radkxNJ2liNSOn1k3t88CGQrbDuIJdSlPqj9aWhZHqF
	vjV2Lg04MLyHMwcQG4HT+K2KMe9CiTkizmkck=
MIME-Version: 1.0
Received: by 10.52.36.242 with SMTP id t18mr3325905vdj.7.1329491661943; Fri,
	17 Feb 2012 07:14:21 -0800 (PST)
Received: by 10.220.192.135 with HTTP; Fri, 17 Feb 2012 07:14:21 -0800 (PST)
In-Reply-To: <20120217122110.Horde.6XSicpjmRSRPPjgmMlJAECA@webmail.leidinger.net>
References: <20120210145604.Horde.ewjpSpjmRSRPNSH0YRHxgAk@webmail.leidinger.net>
	<20120214123755.Horde.WkLNcJjmRSRPOkeTw7bUClA@webmail.leidinger.net>
	<20120215014738.O95093@sola.nimnet.asn.au>
	<CAOjFWZ6f5QtGY7pVVBgHj+xhSJ_QARKPaOjq=ZnfxVz4V-gDGQ@mail.gmail.com>
	<20120217122110.Horde.6XSicpjmRSRPPjgmMlJAECA@webmail.leidinger.net>
Date: Fri, 17 Feb 2012 07:14:21 -0800
Message-ID: <CAOjFWZ5z5q68BnRJ49P8wn89GZR_4_bz9WPjByQxbLJzUa8rZQ@mail.gmail.com>
From: Freddie Cash <fjwcash@gmail.com>
To: Alexander Leidinger <Alexander@leidinger.net>
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
Cc: freebsd-stable@freebsd.org
Subject: Re: Custom kernel poll summary (was: Re: Reducing the need to
 compile a custom kernel)
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>, 
	<mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 17 Feb 2012 15:14:23 -0000

On Fri, Feb 17, 2012 at 3:21 AM, Alexander Leidinger
<Alexander@leidinger.net> wrote:
> Quoting Freddie Cash <fjwcash@gmail.com> (from Tue, 14 Feb 2012 08:26:54
> -0800):
>
>> On Tue, Feb 14, 2012 at 7:43 AM, Ian Smith <smithi@nimnet.asn.au> wrote:
>>>
>>> On Tue, 14 Feb 2012 2:37:55 +0100, Alexander Leidinger wrote:
>>> =C2=A0> 1 IPSTEALTH =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =
=C2=A0 =C2=A0 =C2=A0 =C2=A0-> changes ipfw module only?
>>>
>>> I don't think this is specific to ipfw. =C2=A0From /sys/conf/NOTES:
>>>
>>> # IPSTEALTH enables code to support stealth forwarding (i.e., forwardin=
g
>>> # packets without touching the TTL). =C2=A0This can be useful to hide
>>> firewalls
>>> # from traceroute and similar tools.
>>>
>>> But can it be disabled once added to kernel? =C2=A0It's no good as a de=
fault.
>>
>>
>> It's controllable via sysctl once it's compiled into the kernel. =C2=A0I=
f
>> it's not compiled into the kernel, then the sysctl doesn't exist.
>
>
> Is it the following?
> net.inet.ip.stealth=3D0

Yeah, that's the one.
--=20
Freddie Cash
fjwcash@gmail.com