From owner-freebsd-ipfw  Sun Oct  8 23:54:30 2000
Delivered-To: freebsd-ipfw@freebsd.org
Received: from sentry.granch.com (sentry.granch.com [212.109.197.55])
	by hub.freebsd.org (Postfix) with ESMTP id D17BE37B502
	for <freebsd-ipfw@FreeBSD.ORG>; Sun,  8 Oct 2000 23:54:21 -0700 (PDT)
Received: from sentry.granch.ru (IDENT:shelton@localhost [127.0.0.1])
	by sentry.granch.com (8.9.3/8.9.3) with ESMTP id NAA15845;
	Mon, 9 Oct 2000 13:51:36 +0700 (NOVST)
Message-ID: <39E16AF8.C9856E4@sentry.granch.ru>
Date: Mon, 09 Oct 2000 13:51:36 +0700
From: "Rashid N. Achilov" <shelton@sentry.granch.ru>
Reply-To: achilov@granch.ru
Organization: Granch Ltd.
X-Mailer: Mozilla 4.74 [en] (X11; U; Linux 2.2.12 i386)
X-Accept-Language: ru, en
MIME-Version: 1.0
To: cjclark@alum.mit.edu
Cc: freebsd-ipfw@FreeBSD.ORG
Subject: Re: Where I was wrong?
References: <39DDFB0B.22E04412@sentry.granch.ru> <20001006211946.O25121@149.211.6.64.reflexcom.com>
Content-Type: text/plain; charset=koi8-r
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-ipfw@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

"Crist J . Clark" wrote:
> 
> On Fri, Oct 06, 2000 at 11:17:15PM +0700, Rashid N. Achilov wrote:
> >
> > Default gateway to all is 10.0.1.2 (second ISP other side)
> >
> > I wish I could forward all traffic from 10.0.2.2 to first ISP. I made
> > this rule:
> >
> > ipfw add 100 fwd 10.0.0.2 ip from 10.0.2.2 to any out xmit rl0
> 
> The 'fwd' command probably does not do what you think. Read ipfw(8)
> again.
> 
> I don't understand what you want to do when you say you wish to
> 'forward all traffic to the first ISP.' Are we just talking about
> routing here?

I try to explain. We have 2 different ISP's. One in 212.20.5.0 and two
in 212.109.197.0. Router box has 6 (six) network interfaces - 4
ethernets to parts of internal network, 1 ethernet to PairGain to first
ISP, 1 SBNI card to second ISP. 10.0.0.2 in example is a proxy-server.
For a some time I thougth "What can I do that proxy will go to Internet
via first ISP, and all other via second" and decided to make this
through "fwd" command. Default gateway on router box is to second ISP
and all boxes have second ISP's IP. Proxy has frist-and-second IP's and
must go through first ISP. As I understand "fwd" forward packet to a
remote address, and than it delivers as usual. Or I wrong somewhere?
-- 
   With Best Regards.
   Rashid N. Achilov (RNA1-RIPE), Brainbench ID: 28514
   Granch Ltd. lead engineer, e-mail: achilov@granch.ru
   tel/fax (383-2) 24-2363


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ipfw" in the body of the message