From owner-FreeBSD-users-jp@jp.freebsd.org  Mon Feb 12 02:36:31 2001
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id CAA09472;
	Mon, 12 Feb 2001 02:36:31 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from biwasv01.biwa.ne.jp (biwasv01.biwa.ne.jp [210.161.160.11])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id CAA09467
	for <FreeBSD-users-jp@jp.freebsd.org>; Mon, 12 Feb 2001 02:36:30 +0900 (JST)
	(envelope-from fuhito@mx.biwa.ne.jp)
Received: from globalyst.ASA-Lab.ORG (ng3-47.biwa.ne.jp [210.250.146.47])
	by biwasv01.biwa.ne.jp (8.9.3/3.7W) with SMTP id CAA15104
	for FreeBSD-users-jp@jp.freebsd.org; Mon, 12 Feb 2001 02:35:33 +0900 (JST)
Date: Mon, 12 Feb 2001 02:35:33 +0900 (JST)
Message-Id: <200102111735.CAA15104@biwasv01.biwa.ne.jp>
To: FreeBSD-users-jp@jp.freebsd.org
In-Reply-To: Your message of "Mon, 12 Feb 2001 01:13:49 +0900 (JST)".
	<20010212.011349.74758190.hrs@eos.ocn.ne.jp>
From: fuhito@mx.biwa.ne.jp (Fuhito Inagawa)
Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-2022-JP
X-Mailer: mnews [version 1.22] 1999-12/19(Sun)
Reply-To: FreeBSD-users-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+000315
X-Sequence: FreeBSD-users-jp 58901
Subject: [FreeBSD-users-jp 58901] Re: =?ISO-2022-JP?B?GyRCMXMzVhsoQg==?=
 =?ISO-2022-JP?B?GyRCQ08kKyRpGyhC?= ipfw
	=?ISO-2022-JP?B?GyRCJE5BYDpuGyhC?= 
Errors-To: owner-FreeBSD-users-jp@jp.freebsd.org
Sender: owner-FreeBSD-users-jp@jp.freebsd.org
X-Originator: fuhito@mx.biwa.ne.jp

$B0p@n$G$9!#(B

$B!v!vD9J8Cm0U!v!v(B

<20010212.011349.74758190.hrs@eos.ocn.ne.jp>$B$N5-;v$K$*$$$F(B
JST$B;~4V(B2001$BG/(B02$B7n(B12$BF|(B($B7n(B)01$B;~(B13$BJ,(B49$BIC:"!"(Bhrs@eos.ocn.ne.jp$B$5$s$O(B
$B=q$-$^$7$?!#(B

  | fuhito> sys/netinet/ip_fw.h $BEy$NJQ99$O!"2?=h$K1F6A$,(B
  | fuhito> $B$"$k$s$G$7$g$&$M$'(B...
  | 
  |  $B$G$O!"$3$l"-$O13$J$s$G$9$M(B?
  |  
  |   |If the system is using the ipfw or ip6fw kernel modules (see
  |   |kldstat(8)), the module may be unloaded and the corrected module
  |   |loaded into the kernel using kldload(8)/kldunload(8).

$B$$$d!"!V13$J$s$G$9$M!W$H8@$o$l$k$H(B... (^^;

# $B!V$O$$!W$H8@$&Lu$K$b$$$+$:(B

  | 
  |  $B$6$C$H=hM}$r%A%'%C%/$7$F$_$^$7$?$1$I!"(B
  |  #ifdef _KERNEL $B$NCf$N%0%m!<%P%k%7%s%\%k$O(B
  |  $BJQ$o$C$F$$$J$$$N$G%b%8%e!<%k$N8F$S=P$7$OLdBj$J$$$G$7$g$&$7!"(B
  |  ip_fw.h $B$K0MB8$7$F$$$k(B ip_*.[ch] $B$"$?$j$O(B
  |  ip_fw_init() $B$,Dj5A$7$F$$$k(B ip_fw_chk_ptr $B$r(B
  |  $B;H$C$F$^$9$+$i!"$3$3$i$X$s$N5!G=$O(B
  |  $B%b%8%e!<%k$,:9$7BX$($i$l$l$P=$@5$5$l$k$H;W$$$^$9!#(B
  | 
  |  $BG0$N$?$a!"=$@5%Q%C%A$NItJ,$b$m$H$b$P$C$5$j%+%C%H$7$?(B
  |  $B%+!<%M%k$r9=C[$7$F!"=$@5%Q%C%A$r$"$F$?%b%8%e!<%k$r(B
  |  $BAH$_9~$s$G$_$^$7$?$,!"FC$K0[>o$J>uBV$K$O$J$j$^$;$s$G$7$?!#(B
  | 
  |  $B%+!<%M%k%*%W%7%g%s$G(B IPFIREWALL $B$r;XDj$7$F$$$J$1$l$P!"(B
  |  $B:F9=C[$OI,MW$J$$$H;W$C$F$$$^$7$?!#(B
  |  $B$3$l!"$I$3$K1F6A$9$k$N$+65$($F$/$l$J$$$H$$$&$3$H$O(B
  |  $B$9$0$K$o$+$k$3$H$J$s$G$9$+(B?

# $B$$$d$!!"$9$0$KH=$k$H8@$&$h$j!"$9$0$K$O(B
# $BH=$i$J$$(B($B$+$b$7$l$J$$(B)$B$H$$$&$+(B(^^;;

$B$($C$H!";d$,!V62$$$J!W$H;W$C$?$N$O!"(B
sys/netinet/ip_fw.h $B$N(B struct ip_fw $B$X$N(B 
u_int fw_ipflg; $B$rDI2C$7$F$$$kItJ,$G$9!#(B

--- sys/netinet/ip_fw.h 2000/08/22 00:33:18     1.47.2.3
+++ sys/netinet/ip_fw.h 2001/01/10 03:43:34     1.47.2.5
@@ -62,6 +62,7 @@
 #define IP_FW_ICMPTYPES_DIM    (IP_FW_ICMPTYPES_MAX / (sizeof(unsigned) * 8))
        unsigned fw_icmptypes[IP_FW_ICMPTYPES_DIM]; /* ICMP types bitmap */
        } fw_uar;
+    u_int fw_ipflg;                    /* IP flags word */
     u_char fw_ipopt,fw_ipnopt;         /* IP options set/unset */
     u_char fw_tcpopt,fw_tcpnopt;       /* TCP options set/unset */
     u_char fw_tcpf,fw_tcpnf;           /* TCP flags set/unset */

$B$3$l$G!"9=B$BN$N%5%$%:!"%a%s%P$N%*%U%;%C%H(B
$BEy$,JQ$o$C$F$7$^$&$N$G!"2?=h$K1F6A$,=P$k$+(B
$B$$$A$$$AD4$Y2s$k$N$,$H$F$bBgJQ$G$9$M!#(B

malloc/free (zalloc/zfree $B$+$J!)(B)$B$7$F$?$j$9$k(B
$BItJ,$H$+!"(B

    struct ip_fw *hoge;
        :
        :
    hoge->fw_ipopt ... $B$H$+$bD4$Y$F$$$?$i!"(B
$B$=$N4V$K%+!<%M%k$r2?2s0L%3%s%Q%$%k$G$-$k$G(B
$B$7$g$&(B(^^)

$B$?$H$($P!"(B3.4-RELEASE $B$N%=!<%9$G$9$1$I!"(Bip_dummynet.c $B$G(B
        for (; chain; chain = chain->chain.le_next) {
                register struct ip_fw *const f = chain->rule;
                    if (f->pipe_ptr == b)
                        f->pipe_ptr = NULL ;
        }

$B$H$+$$$&%3!<%I$,$"$k$s$G$9$1$I!"$3$l$O(B
4.x $B$G$O$I$N$h$&$K$J$C$F$^$9!)(B

pipe_ptr $B$O!"(Bfw_ipflg $B$K1F6A$5$l$F$^$9!#(B

$B$3$N$^$^$@$H$7$F!"(Bip_dummynet.c $B$,!"$I$N$h$&$K(B
$BF/$/$N$+$H$+!"$=$3$^$GD4$Y$J$$$H$$$1$J$/$J$k!#(B

$B$^$?!"%=!<%9$G$O$9$0$KH=$i$J$/$F$b!"$?$H$($P(B
genassym $B$+2?$+$G%*%U%;%C%H$r7W;;$7$F!"$=$l$r(B
$B%"%;%s%V%i$G;H$&>l9g$b$"$k$N$G!"$=$l$i$N=t!9(B
$B$r9M$($k$H!"$d$O$j(B *.h $B$KJQ99$,$"$C$F!"$A$c$s(B
$B$H(B make depend $B$7$F$$$l$PB?J,%+!<%M%k$b:n$j(B
$BD>$9$h$&$J>l9g$O!":n$jD>$9$N$,$$$$$s$8$c$J$$(B
$B$G$7$g$&$+!#(B

# $B$A$J$_$K!"$3$&$$$C$?:Y$+$J%Q%C%A$^$G$b4^$a$F(B
# modules $B$N%P!<%8%g%s%A%'%C%/$r$7$h$&$H$9$k$H!"(B
# $BKX$s$IIT2DG=$K$J$k$h$&$G$9$M!#$@$+$i!"%P!<%8(B
# $B%g%s%A%'%C%/$rF~$l$k$N$O!"L50UL#$+$bCN$l$J$$!#(B

$B$=$j$c$!!"=PMh$l$P40A4$K(B module $B$NCf$KJD$89~$a(B
$B$F$7$^$($l$P8@$&;vL5$7$J$s$G$9$,!"$=$l$K$b<+$:(B
$B$H8B3&$,$"$k$G$7$g$&!#(B

/*
 * $B0p@n(B $B;K(B($B$U$R$H(B)        mailto:fuhito@mx.biwa.ne.jp
 *                        http://www.biwa.ne.jp/~fuhito/
 */
