Hello,

I was looking for a mechanism of notifying userland about a change of
firewalling rules, for needs of hardware assisted packet filtering (see
openrouter.net). As I didn't find anything in IPF man pages, and bearing in
mind IP filtering is (in theory) not the only one out there, I was thinking
about similar interface to the one provided by the PF_ROUTE socket, eg.
something like PF_FILTER delivering firewall table changes upon read().

Would this be the right approach to the problem?

Regards,
	-- Jachym Holecek