Date: Sat, 3 Aug 2002 22:13:54 -0700 From: Luigi Rizzo <rizzo@icir.org> To: Nick Rogness <nick@rogness.net> Cc: freebsd-ipfw@FreeBSD.ORG Subject: Re: natd & keep-state Message-ID: <20020803221354.B5279@iguana.icir.org> In-Reply-To: <Pine.BSF.4.21.0208040017160.30559-100000@cody.jharris.com>; from nick@rogness.net on Sun, Aug 04, 2002 at 12:23:05AM -0500 References: <20020803212050.A5279@iguana.icir.org> <Pine.BSF.4.21.0208040017160.30559-100000@cody.jharris.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, Aug 04, 2002 at 12:23:05AM -0500, Nick Rogness wrote: ... > > I still do not follow... isn't this exactly what you want ? > > > > ipfw add skipto 5000 <bla bla bla> keep-state > > > > check-state does not stop, it just executes whatever action is > > specified for the original rule from which the state was created. So > > if that one is a skipto you have a skipto. > > Yes, that is exactly what I want. I tried that exact rule, but it > did not work for some reason :-( In versions prior to 4.6 (forgot > what versions specifically)...all of them didn't work. Haven't > tried with your ipfw2 or post 4.6 yet...will try and let you know. seems to work here with ipfw2. The code in ip_fw.c seems to do a similar thing, and i do not remember doing any change in that area. cheers luigi To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020803221354.B5279>