Date: Fri, 5 Aug 2016 00:08:31 +0800 From: Julian Elischer <julian@freebsd.org> To: "Andrey V. Elsukov" <ae@FreeBSD.org>, lev@FreeBSD.org, Ian Smith <smithi@nimnet.asn.au> Cc: freebsd-ipfw@freebsd.org, "Alexander V. Chernikov" <melifaro@freebsd.org> Subject: Re: IPFW: more "orthogonal? state operations, push into 11? Message-ID: <713a45fd-70a1-e0ed-a3b9-bf057cec12a9@freebsd.org> In-Reply-To: <c45621cd-9f6a-f212-3d2d-91bb0a1f4d4e@FreeBSD.org> References: <9229d4f7-8466-57b0-c954-117736102bd7@FreeBSD.org> <5755F0D3.9060909@FreeBSD.org> <5759DB79.10205@FreeBSD.org> <3d09497c-136c-e217-154c-ba00e6879c6f@freebsd.org> <20160616005016.A15883@sola.nimnet.asn.au> <d7bef617-70a4-f761-7d09-9413eb720b11@freebsd.org> <64d6bdea-fa32-f16f-2fdd-abd33d54d04e@freebsd.org> <46d5cfde-c4ac-ebd0-3c13-2759037621f3@FreeBSD.org> <11a5d41b-109a-434b-e8e0-7ed2826a8cc9@FreeBSD.org> <ee745842-c33e-4e73-f84c-6eb11f283b51@FreeBSD.org> <a3e98e25-4c0d-56ad-5640-0b6f13ebeb21@freebsd.org> <b2580c8f-b279-a3cb-63ae-0c42667d3c35@freebsd.org> <c45621cd-9f6a-f212-3d2d-91bb0a1f4d4e@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 4/08/2016 7:20 PM, Andrey V. Elsukov wrote: > On 04.08.16 06:58, Julian Elischer wrote: >> o while thinking about states etc, it occured to me, what does THIS do >> on subsequent packets in the session? >> >> >> 10 skipto tablearg tcp from table(3) to me keep-state > I think it will not work like you expected when you have created this > rule :) > yes that's what I was thinking.. I'm guessing that the table is not evaluated due to the dynamic match and thus the skipto fails, either doing nothing, or dropping the packet (not sure which)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?713a45fd-70a1-e0ed-a3b9-bf057cec12a9>