From owner-cvs-all  Wed Mar 21  0:54:26 2001
Delivered-To: cvs-all@freebsd.org
Received: from whale.sunbay.crimea.ua (whale.sunbay.crimea.ua [212.110.138.65])
	by hub.freebsd.org (Postfix) with ESMTP
	id 25C8637B71A; Wed, 21 Mar 2001 00:54:15 -0800 (PST)
	(envelope-from ru@whale.sunbay.crimea.ua)
Received: (from ru@localhost)
	by whale.sunbay.crimea.ua (8.11.2/8.11.2) id f2L8sCE49087;
	Wed, 21 Mar 2001 10:54:12 +0200 (EET)
	(envelope-from ru)
Date: Wed, 21 Mar 2001 10:54:12 +0200
From: Ruslan Ermilov <ru@FreeBSD.org>
To: Paul Richards <paul@FreeBSD.org>
Cc: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org
Subject: Re: cvs commit: src/sys/netinet ip_fw.c
Message-ID: <20010321105412.B47802@sunbay.com>
Mail-Followup-To: Paul Richards <paul@FreeBSD.org>,
	cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org
References: <200103210819.f2L8JWm19214@freefall.freebsd.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <200103210819.f2L8JWm19214@freefall.freebsd.org>; from paul@FreeBSD.org on Wed, Mar 21, 2001 at 12:19:32AM -0800
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Wed, Mar 21, 2001 at 12:19:32AM -0800, Paul Richards wrote:
> paul        2001/03/21 00:19:32 PST
> 
>   Modified files:
>     sys/netinet          ip_fw.c 
>   Log:
>   Only flush rules that have a rule number above that set by a new
>   sysctl, net.inet.ip.fw.permanent_rules.
>   
>   This allows you to install rules that are persistent across flushes,
>   which is very useful if you want a default set of rules that
>   maintains your access to remote machines while you're reconfiguring
>   the other rules.
>   
>   Reviewed by:	Mark Murray <markm@FreeBSD.org>
>   
You asked for a review and committed this while many of us were asleep!

What I would really prefer is if we had a flag that marked individual
rules as permanent.  Then flush command would skip these rules, and
another flush command would ignore this flag.


Cheers,
-- 
Ruslan Ermilov		Oracle Developer/DBA,
ru@sunbay.com		Sunbay Software AG,
ru@FreeBSD.org		FreeBSD committer,
+380.652.512.251	Simferopol, Ukraine

http://www.FreeBSD.org	The Power To Serve
http://www.oracle.com	Enabling The Information Age

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message