Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 13 Sep 2006 10:52:54 +0400
From:      freebsd@dwec.ru
To:        <ipfw@freebsd.org>
Subject:   ipfw forward problem
Message-ID:  <130501c6d701$40d4e0f0$6407a8c0@oivanovmob>

Next in thread | Raw E-Mail | Index | Archive | Help
Hello all

I'm confused a bit.
Here's what I have: a firewall (with address A) and a proxy host (in internal network) with address
B.
Both running latest FBSD 6.1-stable. Addresses are (samples) "A" -192.168.0.1 and "B" - 192.168.0.2.
Both kernel are compiled with options "ipfirewall" and "ipfirewall_forward".
The firewall is supposed to forward outgoing POP3 traffic (from internal LAN) to the proxy (the
obviuos).
The scheme: [internal lan + proxy] <---> [firewall] <---> [elsewhere]
So, on the firewall I add rule "ipfw add fwd B tcp from internal_net to any 110 in recv
internal_intf"
On the proxy server I add rule "ipfw fwd 127.0.0.1,PROXY_PORT tcp from any to any 110".
What I get: I get firewall which is trying to forward packets to default gateway
(plenty of DENIES on the external interface of the firewall).
Question: what am I doing wrong?

PS
 the same configuration works perfectly on FBSD 4.11




Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?130501c6d701$40d4e0f0$6407a8c0>