![[BACK]](/icons/back.gif){kind=icon}
Up to [local] / src / usr.bin / netstat
Request diff between arbitrary revisions
Default branch: MAIN
Current tag: OPENBSD_3_5
Revision 1.27 / (download) - annotate - [select for diffs], Mon Dec 15 07:11:31 2003 UTC (20 years, 5 months ago) by mcbride
Branch: MAIN
CVS Tags: OPENBSD_3_5_BASE,
OPENBSD_3_5
Changes since 1.26: +2 -1 lines
Diff to previous 1.26 (colored)
Add initial support for pf state synchronization over the network. Implemented as an in-kernel multicast IP protocol. Turn it on like this: # ifconfig pfsync0 up syncif fxp0 There is not yet any authentication on this protocol, so the syncif must be on a trusted network. ie, a crossover cable between the two firewalls. NOTABLE CHANGES: - A new index based on a unique (creatorid, stateid) tuple has been added to the state tree. - Updates now appear on the pfsync(4) interface; multiple updates may be compressed into a single update. - Applications which use bpf on pfsync(4) will need modification; packets on pfsync no longer contains regular pf_state structs, but pfsync_state structs which contain no pointers. Much more to come. ok deraadt@