From owner-freebsd-questions Mon Nov 19 0:50: 7 2001 Delivered-To: freebsd-questions@freebsd.org Received: from bps.jodocus.org (c115139.upc-c.chello.nl [212.187.115.139]) by hub.freebsd.org (Postfix) with ESMTP id 5FAD937B418 for ; Mon, 19 Nov 2001 00:50:00 -0800 (PST) Received: (from joost@localhost) by bps.jodocus.org (8.11.3/8.11.3) id fAJ8npX72448; Mon, 19 Nov 2001 09:49:51 +0100 (CET) (envelope-from joost) Date: Mon, 19 Nov 2001 09:49:50 +0100 From: Joost Bekkers To: RJ45 Cc: freebsd-questions@FreeBSD.ORG Subject: Re: ipfilter + bridge Message-ID: <20011119094950.A72386@bps.jodocus.org> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0.1i In-Reply-To: ; from rj45@slacknet.com on Mon, Nov 19, 2001 at 01:27:24AM -0700 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Mon, Nov 19, 2001 at 01:27:24AM -0700, RJ45 wrote: > > > Hello, > I Wanted to ask if bridge between 2 NIC on FreeBSD allow ipfilter to being > used over it. If I have 2 NICs one on the external bad internet and the > other on My lan and I bridge between the 2 interface and I Want to use > ipfilter to filter traffic between the 2 NICs, is it realiable does it > work?? For some reason I need to use a bridge and I Cannot use different > IP Addresses for the 2 NICs, I can't have a hidden internal LAN. > I was used to do it with OpenBSD and it worked but I'd like to do it with > FreeBSD. > I don't know about ipfilter, but i know ipfw will work. Keep in mind though that it will only filter IP packets. All others will be passed unless you hack around that in the kernel. The man pages are wrong on this point. -- greetz Joost joost@jodocus.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message