Save and restore information for NAT and stat tables
ipfs [-nv] -l
ipfs [-nv] -u
ipfs [-nv] [-d dirname] -R
ipfs [-nv] [-d dirname] -W
ipfs [-nNSv] [-f filename] -r
ipfs [-nNSv] [-f filename] -w
ipfs [-nNSv] -f filename -i if1, if2
- -d
- Change the default directory used with -R and -W options for saving state information.
- -n
- Don't take any action that would affect information stored in the kernel or on disk.
- -v
- Provide a verbose description of what's being done.
- -i ifname1 ifname2
- Change all instances of interface name ifname1 in
the state save file to ifname2. Useful if you're
restoring state information after a hardware reconfiguration or change.
- -N
- Operate on NAT information.
- -S
- Operate on filtering state information.
- -u
- Unlock state tables in the kernel.
- -l
- Lock state tables in the kernel.
- -r
- Read information from the specified file and
load it into the kernel. This requires the state
tables to have already been locked, and doesn't change the lock once
complete.
- -w
- Write information out to the specified file and
from the kernel. This requires the state tables to
have already been locked, and doesn't change the
lock once complete.
- -R
- Restore all saved state information, if any, from
two files, ipstate.ipf and ipnat.ipf,
stored in the /var/db/ipf directory unless
otherwise specified or when the -d option is used.
The state tables are locked at the beginning of
this operation and unlocked once complete.
- -W
- Save in-kernel state information, if any, out to
two files, ipstate.ipf and ipnat.ipf,
stored in the /var/db/ipf directory unless otherwise specified
the -d option is used. The state tables are locked
at the beginning of this operation and unlocked
once complete.
The ipfs utility saves information, created for NAT entries, to
disk. The system experiences a reboot, followed by the restoration of that
information, resulting in connections not being interrupted.
/var/db/ipf/ipstate.ipf
/var/db/ipf/ipnat.ipf
/dev/ipl
/dev/ipstate
/dev/ipnat
 |
Create the /var/db/ipf/ directory first. |
Perhaps the -W and -R operations should set the
locking rather than undo it, restore it to what it was previously.
Fragment table information is currently not saved.
ipf,
ipfstat,
ipmon,
ipnat,
lsm-ipfilter.so
![[Previous]](../prev.gif)
![[Contents]](../contents.gif)
![[Index]](../keyword_index.gif)
![[Next]](../next.gif)