Date: Tue, 7 Mar 2006 10:11:54 -0600 From: Tillman Hodgson <tillman@seekingfire.com> To: freebsd-questions@freebsd.org Subject: Re: linux iproute2 replacement Message-ID: <20060307161154.GP95501@seekingfire.com> In-Reply-To: <20060307180748.75c157ff@localhost> References: <20060307125859.1768f85e@localhost> <20060307154951.GL95501@seekingfire.com> <20060307180748.75c157ff@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Mar 07, 2006 at 06:07:48PM +0200, Petre Bandac wrote:
> On Tue, 7 Mar 2006 09:49:51 -0600 Anno Domini, the honourable Tillman
> Hodgson wrote using one of his keyboards:
>
> > On Tue, Mar 07, 2006 at 12:58:59PM +0200, Petre Bandac wrote:
> > > hallo
> > >
> > > I am trying to migrate a dual-homed linux box to freebsd; how can I
> > > achieve the src routing iproute2 does on freebsd ?
> >
> > There isn't currently a direct routing equivalent. I "cheat" and use
> > IPF like so (the IPs are faked):
> >
> > # source-IP routed traffic
> > # Note that the "on 'interface'" has to be the one with my default
> > route pass out quick on hme0 to tun6 from 10.0.0.3/24
> > to !192.168.0.0/16 keep state block in on tun6 from any to
> > 10.0.0.3/24 head 200 ... group 200 rules follow ...
> >
> > You can do the same with IPFW and PF.
>
> <shameless>hoping for a full solution :)</shameless>
I seem to recall that it was on Andre's "to-do" list of network
improvements. I have no idea where that's at, though. I'd also love a
full set of policy routing capabilities ... enough rope to do sometime
silly, at least ;-)
> can it be done only with ipfw ? if yes, how ?
With the "fwd" keyword, as per the man page.
-T
--
"The future arrives one day at a time. It's like the frog in the pot."
-- Ernest Lilley
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060307161154.GP95501>