Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 07 May 2007 17:02:56 -0700
From:      Julian Elischer <>
To:        Kirk Davis <>
Subject:   Re: Policy Routing natd+ipfw
Message-ID:  <>
In-Reply-To: <>
References:  <> <> <>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
Kirk Davis wrote:
> Julian Elischer wrote:
>> in -current you can implement a routing table via FWD and tables.
>> in  6.x you need to specify the next hop. and an more explicit rule.
>    Is there any information floating around on how to do this in current
> using the FWD rules and tables? Any pointer on where to look.

man ipfw on -current

basically you can implement alternate routing tables..

ipfw table 1 add # default route for table 1
ipfw table 1 add # but not for packets to 2.3.4.x
ipfw table 2 add #default route for table 2
ipfw table 2 add # but differnet route for packets to 2.3.4.x

ipfw add 100 allow ip from to any out
ipfw add 110 fwd tablearg ip from to table(1) out
ipfw add 120 fwd tablearg ip from to table(2) out

>    Right now I am using fwd rules on our BGP router (Quagga & FreeBSD
> 6.2) to force one of our subnets out a particular interface and avoid
> the routing table but I would prefer to do it more like a dual routing
> table where I can make more routing decisions than just forcing all
> packets from that subnet out the interface.  I could test it on one of
> our current boxes.
>> julian
> ---- Kirk

Want to link to this message? Use this URL: <>