On Fri, Jul 15, 2011 at 08:13:59PM -0300, Christiano F. Haesbaert wrote: > Hi, this diff adds a sysctl to disable kernel icmp echo processing and pass it > to userland via raw sockets. I'm terrible with names but I chose userecho, so > net.inet.icmp.userecho. > > I did some basic tests and it seems to work ok. > > I kinda need this to tunnel ip over icmp echo. >
Can't you just write a PF rule to pass the incoming ICMP packets to a divert socket for a userland program to handle?
