Date: Tue, 4 Feb 2003 07:29:11 +0200 From: "Barry Irwin" <bvi@itouchlabs.com> To: "Mikhail Teterin" <mi+kde@aldan.algebra.com>, <net@FreeBSD.org> Subject: Re: Does natd(8) really need to see _all_ packets? Message-ID: <002801c2cc0e$dba94ff0$83ee35ca@Beastie> References: <200302040027.30781@aldan>
next in thread | previous in thread | raw e-mail | index | archive | help
your best solution is to add a skipto before the divert rule. You can therefore skip any traffic from a private address to another private address. Anything not matched by the skipto rule gets fed to the divert socket. Regards. -- Barry Irwin bvi@itouchlabs.com Tel: +27214875178 Systems Administrator: Networks And Security iTouch TAS http://www.itouchlabs.com Mobile: +27824457210 ----- Original Message ----- From: "Mikhail Teterin" <mi+kde@aldan.algebra.com> To: <net@FreeBSD.org> Sent: Tuesday, February 04, 2003 7:27 AM Subject: Does natd(8) really need to see _all_ packets? > Hi! > > This question bothered me for a while -- most of the traffic on my LAN > is just that -- local. Yet my gw/firewall machine only has one interface > -- with two IP addresses -- private and public on it. > > The DSL modem is plugged into the switch just like everything else. > > I doubt this is a unique setup. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?002801c2cc0e$dba94ff0$83ee35ca>