Date: Sat, 31 Jul 2021 15:10:47 +0200 From: Juraj Lutter <otis@FreeBSD.org> To: Eugene Grosbein <eugen@grosbein.net> Cc: alfadev <alfadev@protonmail.com>, "freebsd-ipfw@FreeBSD.org" <freebsd-ipfw@FreeBSD.org>, "freebsd-hackers@FreeBSD.org" <freebsd-hackers@FreeBSD.org>, "freebsd-pf@FreeBSD.org" <freebsd-pf@FreeBSD.org> Subject: Re: How to Force Packet Traversal Order (IPFW2 => PF) Message-ID: <741DA620-C7E0-4B9B-BC0A-FE1020D80D4C@FreeBSD.org> In-Reply-To: <21339cbe-59c6-5b07-bf8b-8e8612ba64da@grosbein.net> References: <rdc7jLoVJXZDL75xntp5gwEYLvZ2silSk8pwdE-QwT2QxpwXRKDbOP4A27q3o2QA4p4IS17A3kmEWRw4O9iQnmJh-PMqwvsf1h9PYbcVu9A=@protonmail.com> <21339cbe-59c6-5b07-bf8b-8e8612ba64da@grosbein.net>
next in thread | previous in thread | raw e-mail | index | archive | help
> On 31 Jul 2021, at 10:17, Eugene Grosbein <eugen@grosbein.net> wrote: >>=20 >> IPFW and PF startup order definitions are in this files >>=20 >> Code: >>=20 >> /usr/src/sys/netpfil/ipfw/ip_fw2.c >> /usr/src/sys/netpfil/pf/pf_ioctl.c >>=20 >> I have not sufficient skills to editing kernel level files >> and tried instructions below but i couldn't changed that order. >>=20 >> I am stuck on this for weeks my mind gonna blow >> Any help would be appreciated at this point.. >=20 > You need not to edit kernel sources. AFAIK it is possible to achieve = what you need > building custom kernel with ipfw included but pf not included to the = kernel and loaded as module. >=20 I wonder if some tweaking using pfilctl(8) would do the trick. I don=E2=80= =99t have any pf+ipfw boxes. otis =E2=80=94 Juraj Lutter otis@FreeBSD.org
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?741DA620-C7E0-4B9B-BC0A-FE1020D80D4C>