From owner-freebsd-current Thu Aug 22 23:43:59 1996 Return-Path: owner-current Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id XAA01505 for current-outgoing; Thu, 22 Aug 1996 23:43:59 -0700 (PDT) Received: from ra.dkuug.dk (ra.dkuug.dk [193.88.44.193]) by freefall.freebsd.org (8.7.5/8.7.3) with SMTP id XAA01498; Thu, 22 Aug 1996 23:43:55 -0700 (PDT) Received: (from sos@localhost) by ra.dkuug.dk (8.6.12/8.6.12) id IAA17001; Fri, 23 Aug 1996 08:41:51 +0200 Message-Id: <199608230641.IAA17001@ra.dkuug.dk> Subject: Re: cvs commit: src/sys/netinet in.h ip_fw.h ip_input.c ip_output.c To: pst@jnx.com (Paul Traina) Date: Fri, 23 Aug 1996 08:41:51 +0200 (MET DST) Cc: rgrimes@GndRsh.aac.dev.com, archie@whistle.com, julian@whistle.com, sos@freebsd.org, current@freebsd.org In-Reply-To: <199608222354.QAA21803@base.jnx.com> from "Paul Traina" at Aug 22, 96 04:54:20 pm From: sos@freebsd.org Reply-to: sos@freebsd.org X-Mailer: ELM [version 2.4 PL24] Content-Type: text Sender: owner-current@freebsd.org X-Loop: FreeBSD.org Precedence: bulk In reply to Paul Traina who wrote: > > > I like the direction that sos layed out, now it just needs to be expanded > so that the pointed to object can either be in the kernel or in user land. > > I do too, however I think it's not agressive or generic enough in the face > of the mess from the divert code. Sorry I've been asleep while this thread has gone into some real nice discussion !! (I dont get why we didn't get to that sentiment when I brought it up last time :( Oh, well....) I'm not sure I understand what you mean by agressive enough ?? I still think that it should be as simple as possible, but of cause also generic enough to be usefull. > I just started hacking around on things (just scratch copies of the files), > and I think we could get a very clean and general API along the way of what > I discussed earlier that should handle all four functions just fine with one > function call API (divert/nat/firewall/accounting). Remember that there allso should be a hook into the sockopt processing loop in raw_ip.c, so that it is possible to intall new options... I have the code (somewhere) that does what I envisioned, just its for the code in ip_* as before the divert crap got in. I spent some time designing this as I think this interface into the IP stream is pretty important.. I have a project that also relies on this to work, but I have no reservations on changing it RIGHT NOW, so I can get in peace with myself again :) -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Soren Schmidt (sos@FreeBSD.org) FreeBSD Core Team So much code to hack -- so little time.