From owner-freebsd-ipfw Mon Aug 26 12:45:52 2002 Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E09ED37B400 for ; Mon, 26 Aug 2002 12:45:47 -0700 (PDT) Received: from web40312.mail.yahoo.com (web40312.mail.yahoo.com [66.218.78.91]) by mx1.FreeBSD.org (Postfix) with SMTP id 5F80643E65 for ; Mon, 26 Aug 2002 12:45:47 -0700 (PDT) (envelope-from john_resnier@yahoo.com) Message-ID: <20020826194547.67628.qmail@web40312.mail.yahoo.com> Received: from [24.86.104.206] by web40312.mail.yahoo.com via HTTP; Mon, 26 Aug 2002 12:45:47 PDT Date: Mon, 26 Aug 2002 12:45:47 -0700 (PDT) From: John Resnier Subject: Re: Policy routing using IPFW for multiple ISP's To: "Crist J. Clark" Cc: freebsd-ipfw@FreeBSD.ORG In-Reply-To: <20020823052506.GA82200@blossom.cjclark.org> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-ipfw@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hey Crist Thanks for your help. Only reason why I didn't do it with a route is that I wanted ipfw to forward on the app layer. Ideally, I would like to have all web traffic destined for the 66.25.xx.0/24 range to go out the DSL Gateway but the rest of the web traffic go out the Cable connection. The example I provided did not show all that information because I wanted to get this problem solved first. Any examples you would have on how to accomplish this would be awesome!! Thanks for all your time John Resnier --- "Crist J. Clark" wrote: > On Wed, Aug 21, 2002 at 12:32:13AM -0700, a a wrote: > > > > Here's my setup > > > > FreeBSD 4.6.2 box with 3 NICS > > > > Compiled with the following options > > options IPSTEALTH > > options IPFIREWALL > > options IPFIREWALL_VERBOSE > > options IPFIREWALL_VERBOSE_LIMIT=100 > > options IPDIVERT > > options IPFIREWALL_FORWARD > > > > NIC1 - ed0 connected to my cable modem 24.86.xx.xx > Default Gateway > > NIC2 - rl0 conected to my DSL Modem 199.185.xx.xx > > NIC3 - fxp0 connected to my LAN 192.168.1.1 > > > > > > Here's the current IPFW rules > > > > 00100 fwd DSL-Gateway ip from any to 66.25.xx.0/24 > out xmit ed0 > > 00200 divert 8668 ip from any to any via ed0 > > 00200 divert 8669 ip from any to any via rl0 > > 65000 allow ip from any to any > > > > What I'm trying to do is have all traffic go thru > the cable connection except for traffic destined for > the 66.25.xx.0/24 range. I would like that range to > go thru the DSL connection. Currently its not > working. Has anyone tried this before? Is this > even possible? > > You want to route by _destination?_ Uhh, why not > just, > > # route add net 66.25.xx.0/24 gateway> > > You don't need 'fwd' or ipfw(8) to do that. > -- > Crist J. Clark | > cjclark@alum.mit.edu > | > cjclark@jhu.edu > http://people.freebsd.org/~cjc/ | cjc@freebsd.org __________________________________________________ Do You Yahoo!? Yahoo! Finance - Get real-time stock quotes http://finance.yahoo.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message