From owner-freebsd-questions Wed Mar 18 20:57:25 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id UAA14119 for freebsd-questions-outgoing; Wed, 18 Mar 1998 20:57:25 -0800 (PST) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from seera.nttlabs.com (seera.nttlabs.com [204.162.36.81]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id UAA14047 for ; Wed, 18 Mar 1998 20:57:09 -0800 (PST) (envelope-from gene@nttlabs.com) Received: from nttlabs.com (localhost [127.0.0.1]) by seera.nttlabs.com (8.8.8/8.8.7) with ESMTP id UAA23298 for ; Wed, 18 Mar 1998 20:56:35 -0800 (PST) Message-ID: <3510A582.FA6F9FA@nttlabs.com> Date: Wed, 18 Mar 1998 20:56:34 -0800 From: "Eugene M. Kim" Organization: NTT Multimedia Communications Laboratories X-Mailer: Mozilla 4.04 [en] (X11; I; FreeBSD 3.0-CURRENT i386) MIME-Version: 1.0 To: Questions FreeBSD ML Subject: natd/ipfw and network isolation Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hello, When using natd/ipfw to connect an internal network to the outer internet, there are two types of packets which have a public source address and a private destination (or vice versa); the one which is the outcome of natd and the other which is not. Is there a way to distinguish the one from the other by ipfw(8) rules? I would like to allow only the one from natd to be routed, but there seems not to be a way to do this. Thank you, Gene -- Gene M. Kim Software Developer NTT Multimedia Communications Laboratories mailto:gene@nttlabs.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message