Date: Tue, 13 Sep 2005 09:21:27 +0700 (ICT) From: Olivier Nicole <on@cs.ait.ac.th> To: lists@yazzy.org Cc: freebsd-net@freebsd.org Subject: Re: Bridging and divert Message-ID: <200509130221.j8D2LRW7083379@banyan.cs.ait.ac.th> In-Reply-To: <20050912131921.52d61a79.lists@yazzy.org> (message from Marcin Jessa on Mon, 12 Sep 2005 13:19:21 %2B0000) References: <20050912131921.52d61a79.lists@yazzy.org>
next in thread | previous in thread | raw e-mail | index | archive | help
> Is there a trick to make bridge work with divert ? I use ipf not ipfw. Divert I think is same as redirection. What I found out is: 1) firewall applies only to incoming packets (while I think it should apply to incoming and outgoing) so only half the rules applies, and the revert rule of an a redirection will never apply. 2) the IP packet is modified OK, but the Ethernet frame that encl;ose the packet is not modified, so whatever the IP says, the packet will be delivered to the same old MAC address. > Is something like thay maybe possible with pf or ipf ? Modify /sys/net/bridge.c (good luck!) Olivier
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200509130221.j8D2LRW7083379>