Skip site navigation (1)Skip section navigation (2)
Date:      Fri, 9 Feb 2001 11:54:12 -0800 (PST)
From:      Jon <cykyc@yahoo.com>
To:        Luigi Rizzo <rizzo@aciri.org>
Cc:        ipfw@FreeBSD.ORG
Subject:   Re: FreeBSD Application firewall w/o ip forwarding enabled
Message-ID:  <20010209195412.27578.qmail@web4501.mail.yahoo.com>
In-Reply-To: <200102091844.f19Iifg06092@iguana.aciri.org>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
> use that (i assume the reason you do not want
> forwarding
> is to avoid remapping addrsses ?)

It's not to avoid remapping addresses, but to try and
use the firewall as an application firewall instead of
a packet filter firewall.  The running application on
the firewall would be in charge of receiving whatever
type of information on the external interface and then
redirecting it to the internal interface, instead of
simple NAT'n and IP forwarding, which is at the
network level.
 
> see http://www.iet.unipi.it/~luigi/ip_dummynet/
> 
> and the bridge and ipfw manpages
> 
> 	cheers
> 	luigi


__________________________________________________
Do You Yahoo!?
Get personalized email addresses from Yahoo! Mail - only $35 
a year!  http://personal.mail.yahoo.com/


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ipfw" in the body of the message




Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?20010209195412.27578.qmail>