Date: Sat, 11 May 2002 13:46:33 -0700 From: "Crist J. Clark" <cjc@FreeBSD.ORG> To: rick norman <rick.norman@lmco.com> Cc: freebsd-ipfw@FreeBSD.ORG Subject: Re: ipfw and aliases Message-ID: <20020511134633.A2824@blossom.cjclark.org> In-Reply-To: <3CDB2CED.DCC3092F@lmco.com>; from rick.norman@lmco.com on Thu, May 09, 2002 at 07:14:06PM -0700 References: <3CDB2CED.DCC3092F@lmco.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, May 09, 2002 at 07:14:06PM -0700, rick norman wrote:
> Is it possible to write a firewall rule for a router with one interface
> with multiple aliased ip
> addresses that will grab pkts based on the IP_alias they are routed in
> or out on, rather than the src or des address of the pkt.
No, there is no way to do this. The information is simply not
available to the system. There is no way for it to know what IP
address a remote machine might have used to pick its link-layer
address for forwarding the packet.
--
Crist J. Clark | cjclark@alum.mit.edu
| cjclark@jhu.edu
http://people.freebsd.org/~cjc/ | cjc@freebsd.org
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ipfw" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020511134633.A2824>