Date: Mon, 1 Sep 2003 16:00:57 +0200 From: =?iso-8859-1?Q?Sten_Daniel_S=F8rsdal?= <sten.daniel.sorsdal@wan.no> To: "Luigi Rizzo" <rizzo@icir.org> Cc: freebsd-ipfw@freebsd.org Subject: RE: IPFW2, sets and dynamic rules. Message-ID: <0AF1BBDF1218F14E9B4CCE414744E70F1F3EAA@exchange.wanglobal.net>
next in thread | raw e-mail | index | archive | help
Yes but that is only to empty an ancient (possibly empty) ruleset. Notice the swap in the last bit.=20 But do dynamic rules keep tabs on which 'set' they belong to? If so, do their 'set' information get swapped also? >=20 > dynamic rules do not survive a delete, so your "delete set 1" is what > kills your connections. >=20 > cheers > luigi >=20 > On Mon, Sep 01, 2003 at 03:29:36PM +0200, Sten Daniel S=F8rsdal wrote: > >=20 > > Being a complete ipfw idiot, i hoped someone could clarify=20 > this to me. > >=20 [.snip.] > >=20 > > do the dynamic rules always point to the same set or do the=20 > point to the new set when i run swap? > >=20 > > do i need to enable set 1 afterwards to make it work? how=20 > is then the line of rule execution, when > > two sets are enabled?=20 > >=20 > > are there any ways to change the set 0 rules while still=20 > retaining the functionality of the old > > dynamic rules? > >=20 - Sten
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?0AF1BBDF1218F14E9B4CCE414744E70F1F3EAA>