[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: pf skip step optimization

To: misc_(_at_)_openbsd_(_dot_)_org
Subject: Re: pf skip step optimization
From: Henning Brauer <lists-openbsd_(_at_)_bsws_(_dot_)_de>
Date: Wed, 24 Jul 2002 10:39:58 +0200
Mail-followup-to: misc_(_at_)_openbsd_(_dot_)_org

On Tue, Jul 23, 2002 at 08:55:12PM -0700, Paul B. Henson wrote:
> Are you saying that the
> automatic skip step optimization is simpler and hence less prone to error
> than a manual nesting implementation?

at least I say that.

> if I recall correctly, the person who implemented the system you describe
> indicated he back ported chunks of -current pf into his own -stable tree?

it's well known that I am sick ;-)
actually that was 3.0-stable (and the machine still runs that). I needed
some things from this times -current pf, but that's all in 3.1.

> Was that pre or post release of 3.1? 

pre.

> In
> 3.1 I don't think there's any way to limit the amount of memory used by the
> scrub directive?

there is, see pfctl -l (in -current: set limit in pf.conf)

Prev by Date: Re: pf skip step optimization
Next by Date: Re: pf proxy support
Previous by thread: Re: pf skip step optimization
Next by thread: Re: pf skip step optimization
Index(es):
- Date
- Thread

Visit your host, monkey.org