Date: Wed, 21 Mar 2001 10:54:12 +0200 From: Ruslan Ermilov <ru@FreeBSD.org> To: Paul Richards <paul@FreeBSD.org> Cc: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/sys/netinet ip_fw.c Message-ID: <20010321105412.B47802@sunbay.com> In-Reply-To: <200103210819.f2L8JWm19214@freefall.freebsd.org>; from paul@FreeBSD.org on Wed, Mar 21, 2001 at 12:19:32AM -0800 References: <200103210819.f2L8JWm19214@freefall.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Mar 21, 2001 at 12:19:32AM -0800, Paul Richards wrote: > paul 2001/03/21 00:19:32 PST > > Modified files: > sys/netinet ip_fw.c > Log: > Only flush rules that have a rule number above that set by a new > sysctl, net.inet.ip.fw.permanent_rules. > > This allows you to install rules that are persistent across flushes, > which is very useful if you want a default set of rules that > maintains your access to remote machines while you're reconfiguring > the other rules. > > Reviewed by: Mark Murray <markm@FreeBSD.org> > You asked for a review and committed this while many of us were asleep! What I would really prefer is if we had a flag that marked individual rules as permanent. Then flush command would skip these rules, and another flush command would ignore this flag. Cheers, -- Ruslan Ermilov Oracle Developer/DBA, ru@sunbay.com Sunbay Software AG, ru@FreeBSD.org FreeBSD committer, +380.652.512.251 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010321105412.B47802>