From owner-freebsd-net@FreeBSD.ORG Wed May 7 06:59:39 2008 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A4317106567A for ; Wed, 7 May 2008 06:59:39 +0000 (UTC) (envelope-from julian@elischer.org) Received: from outT.internet-mail-service.net (outt.internet-mail-service.net [216.240.47.243]) by mx1.freebsd.org (Postfix) with ESMTP id 86E6B8FC14 for ; Wed, 7 May 2008 06:59:39 +0000 (UTC) (envelope-from julian@elischer.org) Received: from mx0.idiom.com (HELO idiom.com) (216.240.32.160) by out.internet-mail-service.net (qpsmtpd/0.40) with ESMTP; Wed, 07 May 2008 10:21:47 -0700 Received: from julian-mac.elischer.org (localhost [127.0.0.1]) by idiom.com (Postfix) with ESMTP id C407A2D600E; Tue, 6 May 2008 23:59:38 -0700 (PDT) Message-ID: <4821535B.8050001@elischer.org> Date: Tue, 06 May 2008 23:59:39 -0700 From: Julian Elischer User-Agent: Thunderbird 2.0.0.14 (Macintosh/20080421) MIME-Version: 1.0 To: "Bruce M. Simpson" References: <20080503100043.GA68835@k7.mavetju> <481F6AE1.5020408@elischer.org> <20080505231009.GX44028@k7.mavetju> <481F95DE.6090201@elischer.org> <4821330E.8030101@incunabulum.net> In-Reply-To: <4821330E.8030101@incunabulum.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org, Edwin Groothuis Subject: Re: IPPROTO_DIVERT and PF_INET6 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 07 May 2008 06:59:39 -0000 Bruce M. Simpson wrote: > Julian Elischer wrote: >> you could implement a whole new protocol family of which there >> was a single protocol.. divert. > That's sheer overkill for what Edwin needs to be able to do. We already > have a bunch of apps which use divert sockets in the IPv4 space, why > should the existing semantics change? Divert sockets are still tied to > the transport you instantiate them with, and they have always been a > special case anyway depending on where one wishes to draw the lines. > > There is no reason per se, that I can see, why the IPPROTO_DIVERT > identifier can't just be re-used along with pf_proto_register() for > PF_INET6, and I've said this to Edwin off-list. A PROTO_SPACER entry > just needs to be added to in6protosw. > > I was surprised to learn no-one had gone ahead and actually implemented > it already as there are a few cases in IPv6 which might warrant it > (6to4, Teredo etc.) If I'm missing anything obvious please let me know. > > cheers > BMS actually the divert sockets should really not be in PF_INET they could deliver both inet and inet6 packets. the sockaddr that they return (and which needs to be read for divert to make sense) could be used to distinguish between them.