Boris Lytochkin fc727ad63d ipfw: add [fw]mark implementation for ipfw ... Packet Mark is an analogue to ipfw tags with O(1) lookup from mbuf while regular tags require a single-linked list traversal. Mark is a 32-bit number that can be looked up in a table [with 'number' table-type], matched or compared with a number with optional mask applied before comparison. Having generic nature, Mark can be used in a variety of needs. For example, it could be used as a security group: mark will hold a security group id and represent a group of packet flows that shares same access control policy. Reviewed By: pauamma_gundo.com Differential Revision: https://reviews.freebsd.org/D39555 MFC after: 1 month		2023-04-25 12:40:23 +00:00
..
ipfilter/netinet	pfil: add pfil_mem_{in,out}() and retire pfil_run_hooks()	2023-02-14 10:02:49 -08:00
ipfw	ipfw: add [fw]mark implementation for ipfw	2023-04-25 12:40:23 +00:00
pf	pf: change pf_rules_lock and pf_ioctl_lock to per-vnet locks	2023-04-19 09:50:52 +02:00