This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

Vadim Goncharov wrote:
> 2.5. Just to mention: modip, counter limits, fragments.
> These patches are already currently discussed in ipfw@, but included
> here just to not forget. These are "modip" action, allowing to modify I=

> header (DSCP, ToS, TTL) and corresponding match rule options, and a rul=

> option to match when rule counters are less then specified number
> packets or bytes (possibly from dynamic rule's counters), may be
> a tablearg. This is also related with mentioned in section 1.2 ability
> to control rule counters.
> Adding a few keywords for O_FRAG more fragment matching (not only
> non-first fragment), e.g. for sending to specialized netgraph(4)
> reassembling module, is also desirable.
> That's all for today. Any comments, additions, corrections are welcome!=

> =20

For remember to all, I work around of modip action stilly, I stoped my
work during last week, but I work again in it.
Work status:

1) We have modip action implemented:

island# ipfw add modip
ipfw: need modip [DF|TOS|IPPRE|DSCP]:code arg

2) Both DF and IPPRE works perfect:
island# ipfw show
00010 371 36133 modip ippre:immediate ip from any to any
00011 52 5035 modip df:0 ip from any to any

3) DSCP:
With the DSCP I've some errors but I believe that I fix it on this week.

4) ToS:
I start the work on the next week.

The patch:

Best Regards,

Marcelo Araujo (__) \\\'',) \/ \ ^
Power To Server. .\. /_)

Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

Version: GnuPG v1.4.7 (FreeBSD)