From owner-freebsd-ipfw@freebsd.org  Sun Mar 22 21:00:59 2020
Return-Path: <owner-freebsd-ipfw@freebsd.org>
Delivered-To: freebsd-ipfw@mailman.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.nyi.freebsd.org (Postfix) with ESMTP id 33E3C26CD56
 for <freebsd-ipfw@mailman.nyi.freebsd.org>;
 Sun, 22 Mar 2020 21:00:59 +0000 (UTC)
 (envelope-from bugzilla-noreply@FreeBSD.org)
Received: from mailman.nyi.freebsd.org (mailman.nyi.freebsd.org
 [IPv6:2610:1c1:1:606c::50:13])
 by mx1.freebsd.org (Postfix) with ESMTP id 48lqfy4Ztjz4Pwl
 for <freebsd-ipfw@freebsd.org>; Sun, 22 Mar 2020 21:00:58 +0000 (UTC)
 (envelope-from bugzilla-noreply@FreeBSD.org)
Received: by mailman.nyi.freebsd.org (Postfix)
 id B3A4326CCFE; Sun, 22 Mar 2020 21:00:57 +0000 (UTC)
Delivered-To: ipfw@mailman.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.nyi.freebsd.org (Postfix) with ESMTP id B345126CCFD
 for <ipfw@mailman.nyi.freebsd.org>; Sun, 22 Mar 2020 21:00:57 +0000 (UTC)
 (envelope-from bugzilla-noreply@FreeBSD.org)
Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org
 [IPv6:2610:1c1:1:606c::19:3])
 (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
 server-signature RSA-PSS (4096 bits)
 client-signature RSA-PSS (4096 bits) client-digest SHA256)
 (Client CN "mxrelay.nyi.freebsd.org",
 Issuer "Let's Encrypt Authority X3" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 48lqfx1WcQz4PvP
 for <ipfw@FreeBSD.org>; Sun, 22 Mar 2020 21:00:57 +0000 (UTC)
 (envelope-from bugzilla-noreply@FreeBSD.org)
Received: from kenobi.freebsd.org (kenobi.freebsd.org
 [IPv6:2610:1c1:1:606c::50:1d])
 (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
 server-signature RSA-PSS (4096 bits))
 (Client did not present a certificate)
 by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 7E73B3818
 for <ipfw@FreeBSD.org>; Sun, 22 Mar 2020 21:00:56 +0000 (UTC)
 (envelope-from bugzilla-noreply@FreeBSD.org)
Received: from kenobi.freebsd.org ([127.0.1.5])
 by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 02ML0uJY096484
 for <ipfw@FreeBSD.org>; Sun, 22 Mar 2020 21:00:56 GMT
 (envelope-from bugzilla-noreply@FreeBSD.org)
Received: (from bugzilla@localhost)
 by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 02ML0uHC096482
 for ipfw@FreeBSD.org; Sun, 22 Mar 2020 21:00:56 GMT
 (envelope-from bugzilla-noreply@FreeBSD.org)
Message-Id: <202003222100.02ML0uHC096482@kenobi.freebsd.org>
X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to
 bugzilla-noreply@FreeBSD.org using -f
From: bugzilla-noreply@FreeBSD.org
To: ipfw@FreeBSD.org
Subject: Problem reports for ipfw@FreeBSD.org that need special attention
Date: Sun, 22 Mar 2020 21:00:56 +0000
MIME-Version: 1.0
Content-Type: text/plain; charset="UTF-8"
X-Content-Filtered-By: Mailman/MimeDel 2.1.29
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-ipfw>,
 <mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw/>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
 <mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 22 Mar 2020 21:00:59 -0000

To view an individual PR, use:
  https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=(Bug Id).

The following is a listing of current problems submitted by FreeBSD users,
which need special attention. These represent problem reports covering
all versions including experimental development code and obsolete releases.

Status      |    Bug Id | Description
------------+-----------+---------------------------------------------------
New         |    215875 | [ipfw] ipfw lookup tables do not support mbuf_tag 
New         |    232764 | [ipfw] share/examples/ipfw/change_rules.sh: Suppo 

2 problems total for which you should take action.

From owner-freebsd-ipfw@freebsd.org  Tue Mar 24 12:41:21 2020
Return-Path: <owner-freebsd-ipfw@freebsd.org>
Delivered-To: freebsd-ipfw@mailman.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.nyi.freebsd.org (Postfix) with ESMTP id 7937B2A516D
 for <freebsd-ipfw@mailman.nyi.freebsd.org>;
 Tue, 24 Mar 2020 12:41:21 +0000 (UTC)
 (envelope-from bu7cher@yandex.ru)
Received: from forward106o.mail.yandex.net (forward106o.mail.yandex.net
 [37.140.190.187])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 48mrTC30mhz48Pn
 for <freebsd-ipfw@freebsd.org>; Tue, 24 Mar 2020 12:41:02 +0000 (UTC)
 (envelope-from bu7cher@yandex.ru)
Received: from mxback8g.mail.yandex.net (mxback8g.mail.yandex.net
 [IPv6:2a02:6b8:0:1472:2741:0:8b7:169])
 by forward106o.mail.yandex.net (Yandex) with ESMTP id 57F495061D1E;
 Tue, 24 Mar 2020 15:35:14 +0300 (MSK)
Received: from myt5-95c1fb78270f.qloud-c.yandex.net
 (myt5-95c1fb78270f.qloud-c.yandex.net [2a02:6b8:c12:1725:0:640:95c1:fb78])
 by mxback8g.mail.yandex.net (mxback/Yandex) with ESMTP id 4ulm1ZoibU-ZEXiJcFt; 
 Tue, 24 Mar 2020 15:35:14 +0300
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yandex.ru; s=mail;
 t=1585053314; bh=c6aM3z7myIvY/BKAz1vTGD9bJxGGW95EqMdzHCK1Ra0=;
 h=In-Reply-To:From:Date:References:To:Subject:Message-ID;
 b=FMyPhauadjjaQ2YPFY2q0Ws4ozjxsOsnPQAFfCajKLK0S4T3WtmDnlJFzoUtMDQnM
 EEzXXuobk7LZLDiJYbpqog6rC4dhoR3LsPbLlNubmUdus8re66jVRRd+R8biluNcal
 gr/zCL1m4AzNzmQHZgea8+Zl+lt1lu69kk82wmgg=
Received: by myt5-95c1fb78270f.qloud-c.yandex.net (smtp/Yandex) with ESMTPSA
 id 36nnRcRnDB-ZDb4Dsnj; Tue, 24 Mar 2020 15:35:13 +0300
 (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
 (Client certificate not present)
Subject: Re: Rule optimization
To: driesm.michiels@gmail.com, freebsd-ipfw@freebsd.org
References: <005401d5fee3$247d7250$6d7856f0$@gmail.com>
From: "Andrey V. Elsukov" <bu7cher@yandex.ru>
Openpgp: id=E6591E1B41DA1516F0C9BC0001C5EA0410C8A17A
Autocrypt: addr=bu7cher@yandex.ru; prefer-encrypt=mutual; keydata=
 mQENBEwBF1kBCADB9sXFhBEUy8qQ4X63Y8eBatYMHGEFWN9ypS5lI3RE6qQW2EYbxNk7qUC5
 21YIIS1mMFVBEfvR7J9uc7yaYgFCEb6Sce1RSO4ULN2mRKGHP3/Sl0ijZEjWHV91hY1YTHEF
 ZW/0GYinDf56sYpDDehaBF5wkWIo1+QK5nmj3vl0DIDCMNd7QEiWpyLVwECgLX2eOAXByT8B
 bCqVhJGcG6iFP7/B9Ll6uX5gb8thM9LM+ibwErDBVDGiOgvfxqidab7fdkh893IBCXa82H9N
 CNwnEtcgzh+BSKK5BgvPohFMgRwjti37TSxwLu63QejRGbZWSz3OK3jMOoF63tCgn7FvABEB
 AAG0JUFuZHJleSBWLiBFbHN1a292IDxidTdjaGVyQHlhbmRleC5ydT6JATgEEwECACIFAkwB
 F1kCGwMGCwkIBwMCBhUIAgkKCwQWAgMBAh4BAheAAAoJEAHF6gQQyKF6qmYIAI6ekfm1VA4T
 vqankI1ISE6ku4jV7UlpIQlEbE7/8n3Zd6teJ+pGOQhN5qk8QE7utdPdbktAzi+x7LIJVzUw
 4TywZLXGrkP7VKYkfg6oyCGyzITghefQeJtr2TN4hYCkzPWpylkue8MtmqfZv/6royqwTbN+
 +E09FQNvTgRUYJYTeQ1qOsxNRycwvw3dr2rOfuxShbzaHBB1pBIjGrMg8fC5pd65ACH5zuFV
 A0CoTNGMDrEZSfBkTW604UUHFFXeCoC3dwDZRKOWJ3GmMXns65Ai5YkA63BSHEE1Qle3VBhd
 cG1w0CB5FBV3pB27UVnf0jEbysrDqW4qN7XMRFSWNAy5AQ0ETAEXWQEIAJ2p6l9LBoqdH/0J
 PEFDY2t2gTvAuzz+8zs3R03dFuHcNbOwjvWCG0aOmVpAzkRa8egn5JB4sZaFUtKPYJEQ1Iu+
 LUBwgvtXf4vWpzC67zs2dDuiW4LamH5p6xkTD61aHR7mCB3bg2TUjrDWn2Jt44cvoYxj3dz4
 S49U1rc9ZPgD5axCNv45j72tggWlZvpefThP7xT1OlNTUqye2gAwQravXpZkl5JG4eOqJVIU
 X316iE3qso0iXRUtO7OseBf0PiVmk+wCahdreHOeOxK5jMhYkPKVn7z1sZiB7W2H2TojbmcK
 HZC22sz7Z/H36Lhg1+/RCnGzdEcjGc8oFHXHCxUAEQEAAYkBHwQYAQIACQUCTAEXWQIbDAAK
 CRABxeoEEMihegkYCAC3ivGYNe2taNm/4Nx5GPdzuaAJGKWksV+w9mo7dQvU+NmI2az5w8vw
 98OmX7G0OV9snxMW+6cyNqBrVFTu33VVNzz9pnqNCHxGvj5dL5ltP160JV2zw2bUwJBYsgYQ
 WfyJJIM7l3gv5ZS3DGqaGIm9gOK1ANxfrR5PgPzvI9VxDhlr2juEVMZYAqPLEJe+SSxbwLoz
 BcFCNdDAyXcaAzXsx/E02YWm1hIWNRxanAe7Vlg7OL+gvLpdtrYCMg28PNqKNyrQ87LQ49O9
 50IIZDOtNFeR0FGucjcLPdS9PiEqCoH7/waJxWp6ydJ+g4OYRBYNM0EmMgy1N85JJrV1mi5i
Message-ID: <766ab445-eacd-03b7-f225-68f67a8c85b7@yandex.ru>
Date: Tue, 24 Mar 2020 15:31:29 +0300
User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:60.0) Gecko/20100101
 Thunderbird/60.8.0
MIME-Version: 1.0
In-Reply-To: <005401d5fee3$247d7250$6d7856f0$@gmail.com>
Content-Type: multipart/signed; micalg=pgp-sha256;
 protocol="application/pgp-signature";
 boundary="4YTUAgN61asPoScuFqmp9RTs99nSeHO3r"
X-Rspamd-Queue-Id: 48mrTC30mhz48Pn
X-Spamd-Bar: -----
Authentication-Results: mx1.freebsd.org;
 dkim=pass header.d=yandex.ru header.s=mail header.b=FMyPhaua;
 dmarc=pass (policy=none) header.from=yandex.ru;
 spf=pass (mx1.freebsd.org: domain of bu7cher@yandex.ru designates
 37.140.190.187 as permitted sender) smtp.mailfrom=bu7cher@yandex.ru
X-Spamd-Result: default: False [-5.20 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[];
 R_SPF_ALLOW(-0.20)[+ip4:37.140.128.0/18];
 FREEMAIL_FROM(0.00)[yandex.ru]; HAS_ATTACHMENT(0.00)[];
 TO_DN_NONE(0.00)[]; RCVD_COUNT_THREE(0.00)[4];
 DKIM_TRACE(0.00)[yandex.ru:+]; RCPT_COUNT_TWO(0.00)[2];
 DMARC_POLICY_ALLOW(-0.50)[yandex.ru,none]; SIGNED_PGP(-2.00)[];
 FREEMAIL_TO(0.00)[gmail.com]; FROM_EQ_ENVFROM(0.00)[];
 MIME_TRACE(0.00)[0:+,1:+,2:+,3:~]; RCVD_TLS_LAST(0.00)[];
 RCVD_IN_DNSWL_LOW(-0.10)[187.190.140.37.list.dnswl.org : 127.0.5.1];
 ASN(0.00)[asn:13238, ipnet:37.140.128.0/18, country:RU];
 MID_RHS_MATCH_FROM(0.00)[];
 DWL_DNSWL_NONE(0.00)[yandex.ru.dwl.dnswl.org : 127.0.5.0];
 ARC_NA(0.00)[]; FREEMAIL_ENVFROM(0.00)[yandex.ru];
 R_DKIM_ALLOW(-0.20)[yandex.ru:s=mail];
 NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; FROM_HAS_DN(0.00)[];
 NEURAL_HAM_LONG(-1.00)[-1.000,0]; TAGGED_RCPT(0.00)[];
 MIME_GOOD(-0.20)[multipart/signed,multipart/mixed,text/plain];
 IP_SCORE_FREEMAIL(0.00)[]; TO_MATCH_ENVRCPT_SOME(0.00)[];
 IP_SCORE(0.00)[ip: (-9.75), ipnet: 37.140.128.0/18(-4.89), asn: 13238(-3.85),
 country: RU(0.01)]
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-ipfw>,
 <mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw/>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
 <mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Mar 2020 12:41:21 -0000

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--4YTUAgN61asPoScuFqmp9RTs99nSeHO3r
Content-Type: multipart/mixed; boundary="lGhRUd9bbOCCrr5VrfS1jPBoIxRCQ74BT";
 protected-headers="v1"
From: "Andrey V. Elsukov" <bu7cher@yandex.ru>
To: driesm.michiels@gmail.com, freebsd-ipfw@freebsd.org
Message-ID: <766ab445-eacd-03b7-f225-68f67a8c85b7@yandex.ru>
Subject: Re: Rule optimization
References: <005401d5fee3$247d7250$6d7856f0$@gmail.com>
In-Reply-To: <005401d5fee3$247d7250$6d7856f0$@gmail.com>

--lGhRUd9bbOCCrr5VrfS1jPBoIxRCQ74BT
Content-Type: text/plain; charset=utf-8
Content-Language: en-US
Content-Transfer-Encoding: quoted-printable

On 20.03.2020 21:12, driesm.michiels@gmail.com wrote:
> What would be more efficient, theoretically? Below the two cases I'm
> thinking about.
>=20
> Note that the first 4 commands of case 2 are not really action rules an=
d are
> just setting up the table which for the sake of example I included.

Hi,

I think for 3 interfaces you will not see some noticeable difference,
but when number of interfaces in the table will grow to tens or
hundreds, it will work much better than the plain list of the rules.

--=20
WBR, Andrey V. Elsukov


--lGhRUd9bbOCCrr5VrfS1jPBoIxRCQ74BT--

--4YTUAgN61asPoScuFqmp9RTs99nSeHO3r
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----
Comment: Using GnuPG with Thunderbird - https://www.enigmail.net/

iQEzBAEBCAAdFiEE5lkeG0HaFRbwybwAAcXqBBDIoXoFAl55/aEACgkQAcXqBBDI
oXrxaAgAuqdTH8YYgqyR4GLq8JAy46Z4igUZUCQ7e04sK9OonXEZgW+EXCZjra1H
VG9Eun7HJ8z4p5bTj5YkqwoQUOHRNPtv63eToC2Yy2IVaHU5Wi8/3d/tb8X6e0Dd
SYzKQqbpqbjHEWBgzV4dDnMyUML2N6v4HoWW76S7l2TNle9lIoM5wLxFer9aitDv
ZWcmPdFM8PnKQSY3EYozH2F3ewk1Pc/0MkDcSHD492WBjRV9BVjtrlKWnlmAe0T5
+YN95eGfHNukX1oFTUcXFv748ql+737f1EgBU7Ui7B3Ju8XTFP5c+/KQA/oT+QH3
Q+61EblTvBbGW/ZnlflB28gTL19akQ==
=rLzW
-----END PGP SIGNATURE-----

--4YTUAgN61asPoScuFqmp9RTs99nSeHO3r--