Date: Sat, 31 Jul 2021 08:10:56 -0600 From: Ian Lepore <ian@freebsd.org> To: Juraj Lutter <otis@FreeBSD.org>, Eugene Grosbein <eugen@grosbein.net> Cc: alfadev <alfadev@protonmail.com>, "freebsd-ipfw@FreeBSD.org" <freebsd-ipfw@FreeBSD.org>, "freebsd-hackers@FreeBSD.org" <freebsd-hackers@FreeBSD.org>, "freebsd-pf@FreeBSD.org" <freebsd-pf@FreeBSD.org> Subject: Re: How to Force Packet Traversal Order (IPFW2 => PF) Message-ID: <cfe6e5264240838dca2e5d65a671920ac9d0a083.camel@freebsd.org> In-Reply-To: <741DA620-C7E0-4B9B-BC0A-FE1020D80D4C@FreeBSD.org> References: <rdc7jLoVJXZDL75xntp5gwEYLvZ2silSk8pwdE-QwT2QxpwXRKDbOP4A27q3o2QA4p4IS17A3kmEWRw4O9iQnmJh-PMqwvsf1h9PYbcVu9A=@protonmail.com> <21339cbe-59c6-5b07-bf8b-8e8612ba64da@grosbein.net> <741DA620-C7E0-4B9B-BC0A-FE1020D80D4C@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 2021-07-31 at 15:10 +0200, Juraj Lutter wrote: > > > > On 31 Jul 2021, at 10:17, Eugene Grosbein <eugen@grosbein.net> > > wrote: > > > > > > IPFW and PF startup order definitions are in this files > > > > > > Code: > > > > > > /usr/src/sys/netpfil/ipfw/ip_fw2.c > > > /usr/src/sys/netpfil/pf/pf_ioctl.c > > > > > > I have not sufficient skills to editing kernel level files > > > and tried instructions below but i couldn't changed that order. > > > > > > I am stuck on this for weeks my mind gonna blow > > > Any help would be appreciated at this point.. > > > > You need not to edit kernel sources. AFAIK it is possible to > > achieve what you need > > building custom kernel with ipfw included but pf not included to > > the kernel and loaded as module. > > > > > I wonder if some tweaking using pfilctl(8) would do the trick. I > don’t have any pf+ipfw boxes. > > otis > > — > Juraj Lutter > otis@FreeBSD.org > > > I wonder if netgraph+ipfw might be a better combo than pf+ipfw to get round-robin load balancing. Or if not that directly, then maybe netgraph could help force the ordering the way you want. -- Ian
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?cfe6e5264240838dca2e5d65a671920ac9d0a083.camel>