From owner-freebsd-questions@FreeBSD.ORG Fri Apr 25 02:59:38 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9B6CB37B401 for ; Fri, 25 Apr 2003 02:59:38 -0700 (PDT) Received: from mx1.lphp.org (APastourelles-107-1-17-67.abo.wanadoo.fr [81.48.127.67]) by mx1.FreeBSD.org (Postfix) with ESMTP id 780E143FCB for ; Fri, 25 Apr 2003 02:59:37 -0700 (PDT) (envelope-from ajacoutot@lphp.org) Received: from sta01 (sta01.lphp.org.local [192.168.0.4]) by mx1.lphp.org (8.12.8p1/8.12.8) with ESMTP id h3P9xaut018890 for ; Fri, 25 Apr 2003 11:59:36 +0200 (CEST) (envelope-from ajacoutot@lphp.org) From: Antoine Jacoutot To: freebsd-questions@freebsd.org Date: Fri, 25 Apr 2003 11:59:36 +0200 User-Agent: KMail/1.5.1 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200304251159.36187.ajacoutot@lphp.org> Subject: firewall dynamic IP X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 25 Apr 2003 09:59:39 -0000 Hi ! In my progress of still learning firewall with ipfw, I have a question. Can I convert the following rule: ${fwcmd} add pass tcp from any to ${oip} 25 setup into on of those (which one would be the best, I guess the second one, right ?): ${fwcmd} add pass tcp from any to any via tun0 25 setup ${fwcmd} add pass tcp from any to me in via tun0 setup I ask this question because I do not have a fixed @ip on the outside interface so I cannot use the ${oip} (outside @ip) variable. By the way, is there a difference between: ${fwcmd} add pass... and ${fwcmd} add allow... ? Thanks in advance for your answers. Antoine