Hello, David! You wrote to "Sergey Mokryshev" <[EMAIL PROTECTED]> on Wed, 21 Aug 2002 12:07:43 -0500:
>> No, ipl.ko is not broken. It depends on pfil(9). DWC> Shouldn't we try to make a pfil.ko that ipl.ko depends on then? I make a brief look into code (I am not a kernel hacker nor a programmer). There are a few files with PFIL_HOOKS-dependant #ifdefs, but it is strongly tied with the code. /sys/net/bridge.c /sys/netinet/ip_input.c /sys/netinet/ip_output.c /sys/netinet6/ip6_forward.c /sys/netinet6/ip6_input.c /sys/netinet6/ip6_output.c Darren Reed has some pieces of code on his site, but I did not read it. ftp://coombs.anu.edu.au/pub/net/ip-filter/pfil-1.26.tar.gz According to pfil(9) manual ----------- BUGS The current pfil implementation will need changes to suit a threaded ker- nel model. ----------- May be this is the reason not to make it default. Sincerely yours, Sergey Mokryshev. To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-current" in the body of the message
