In message <[EMAIL PROTECTED]>, Luigi Rizzo writes:
>> I still think we should split the current "one huge list of rules"
>> into several lists:
>
>> Two lists per interface:
>> one list of rules for inbound packets
>> one list of rules for outbound packets
>>
>> Two lists for the IP stack:
>> one list of rules for incoming packets
>> one list of rules for outgoing packets
>>
>> One list for forwarding of packets.
>
>aren't these three classes combined in some H-shaped way ?
Could be, the forwarding branch could be a good place to
hook up natd(8) for instance...
--
Poul-Henning Kamp FreeBSD coreteam member
[EMAIL PROTECTED] "Real hackers run -current on their laptop."
FreeBSD -- It will take a long time before progress goes too far!
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current" in the body of the message
