Date: Fri, 26 Oct 2001 13:57:27 +0400 From: "Nickolay A.Kritsky" <nkritsky@internethelp.ru> To: Alexei Zakirov <frank@unshadow.net> Cc: freebsd-security@freebsd.org Subject: Re[2]: ipfw and ipf on one box Message-ID: <978337558.20011026135727@internethelp.ru> In-Reply-To: <Pine.BSF.4.32.0110261241060.2595-100000@hellbell.domain> References: <Pine.BSF.4.32.0110261241060.2595-100000@hellbell.domain>
next in thread | previous in thread | raw e-mail | index | archive | help
Hello Alexei, Friday, October 26, 2001, 12:46:35 PM, you wrote: AZ> On Fri, 26 Oct 2001, Nickolay A.Kritsky wrote: >> Hi all. >> >> Has anybody an experience of concurrent work of ipfw and ipfilter on >> one FreeBSD box? Is it possible? What will be the order of packets AZ> yes it's possible. I'm using this combination to get an in-kernel ipf NAT AZ> and ipfw working together. AZ> As I can see order is following: PKT ->> (ipnat) -> (ipfilter) -> (ipfw) -> (bpf) -> INTERFACE OUT AZ> PKT <- (ipfw) <- (ipf) <- (ipnat) <- (bpf) <- INTERFACE IN AZ> *** WBR, Alexei Zakirov (frank@unshadow.net) Thanks a lot, I will try this on my firewall. ;------------------------------------------- ; NKritsky ; SysAdmin InternetHelp.Ru ; http://www.internethelp.ru ; mailto:nkritsky@internethelp.ru To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?978337558.20011026135727>