Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 11 Dec 2012 11:02:18 +0330
From:      takCoder <tak.official@gmail.com>
To:        s m <sam.gh1986@gmail.com>
Cc:        freebsd-questions@freebsd.org
Subject:   Re: getting packets on a specific port by pf
Message-ID:  <CAPkyVLyTfoSEM_OgBAATDPgyJ4F0snv_SdCAdC15DrgwRGSGhA@mail.gmail.com>
In-Reply-To: <CAA_1SgGcXoBgki9W-mtTSbZZM3TiVqwwvwVvGAOmiQQj-6joVA@mail.gmail.com>
References:  <CAA_1SgGoFP-+cDZh_cynH2F1-sZ6ij0CdRqWP--KYVybrtx7HA@mail.gmail.com> <CAPkyVLyPq8=Uvam1MkngyvSDT_TzXhJq6p8jjKa5syZjfrOd5A@mail.gmail.com> <CAA_1SgGcXoBgki9W-mtTSbZZM3TiVqwwvwVvGAOmiQQj-6joVA@mail.gmail.com>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
hi,

suddenly this occured to my mind that, as you know, each firewall has a
virtual interface on system which they listen to..

so, isn't it possible to just forward required packets from ipfw to pf's
virtual if?

i have to mention that this is just an all-of-a-sudden idea and i'm not
sure about it's being right at all..

may be someone else can give both of us a tip on its being right or wrong??
:)

regards,
takCoder

Best Regards,
t.a.k



On Thu, Nov 8, 2012 at 5:30 PM, s m <sam.gh1986@gmail.com> wrote:

> dear takcoder
>
> maybe you are right but now it is not important for me. i want to get
> packets by pf in order to set packet's TOS bit (packets which comes from
> IPFW).
>
> have you any suggestion?
>
> thanks for your attention
> sam
>
>
> On Thu, Nov 8, 2012 at 4:11 PM, takCoder <tak.official@gmail.com> wrote:
>
>> hey sam,
>>
>> i don't know the exact answer for your question.. but a question occurred
>> in my mind..
>> what's your final purpose of doing so? what do you exactly mean by the
>> phrase "to change them"??
>>
>> and don't you think that this sequence of firewalls has a deep effect on
>> your system performance? in my idea this seems just like a throughput
>> bottleneck.. isn't it so? or it's not important here?
>>
>> any how.. if you tell us more details about what you're looking for, may
>> be it become more clear for guys such as me! ;)
>>
>> yours,
>> takcoder
>>
>>
>> On Thu, Nov 8, 2012 at 3:53 PM, s m <sam.gh1986@gmail.com> wrote:
>>
>>>  hello guys
>>>
>>> i have a problem with getting packets which are diverted to a specific
>>> port
>>> by PF. i mean i diverted my packets to a specific port by IPFW and want
>>> to
>>> get these packets by PF to change them.
>>> i used "ipfw add 1000 divert 8000 all form any to any" command to divert
>>> my
>>> packets. how can i get these packets by pf on port number 8000?
>>>
>>> pf has "divert-reply" option. should i use it to get packets? how? any
>>> comments or hints are really appreciated.
>>>
>>> thanks,
>>> sam
>>> _______________________________________________
>>> freebsd-questions@freebsd.org mailing list
>>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
>>> To unsubscribe, send any mail to "
>>> freebsd-questions-unsubscribe@freebsd.org"
>>>
>>
>>
>



Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?CAPkyVLyTfoSEM_OgBAATDPgyJ4F0snv_SdCAdC15DrgwRGSGhA>