From owner-freebsd-ipfw@FreeBSD.ORG Tue May 6 21:11:55 2008 Return-Path: Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 6E7B4106564A for ; Tue, 6 May 2008 21:11:55 +0000 (UTC) (envelope-from marconemlt@gmail.com) Received: from wr-out-0506.google.com (wr-out-0506.google.com [64.233.184.226]) by mx1.freebsd.org (Postfix) with ESMTP id 210B08FC17 for ; Tue, 6 May 2008 21:11:54 +0000 (UTC) (envelope-from marconemlt@gmail.com) Received: by wr-out-0506.google.com with SMTP id 50so241992wra.13 for ; Tue, 06 May 2008 14:11:54 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type; bh=pHGt+7Kp5npE+vvvveSm89fOUydMMNogz8rYITdXbo8=; b=KIC8gA743aXmtwOQO81um7/XqkbG99WtVEZnVeMB+eAE4DI8nDmQ4XgKI2NYLhdnHGAUOUwrBESknmxjr+pXd3D7vvZPTM8uaGAG12EI8VfZAxh7MkB/F2+mYQvXRoqj5eXtAEr7qCK48HDSdr8sHxN3g39Div3f+MadMmo4Axc= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:mime-version:content-type; b=vCoDJHp/pOL6fbdRcv4u5p8u2Yu0FBF9HHu/hM67cPRixfjndFKjfgYI3qEhssMZ72b23uzHKH3D7uSaXp/psn8KAf85vP9beerE4QA2LM0YTJf4RxvTNY1wl/pzzvK/JIutwK8SfFhFfsqJPQoYEdyMtBtk3thmyJisb5VnzYA= Received: by 10.143.36.15 with SMTP id o15mr520898wfj.182.1210106766318; Tue, 06 May 2008 13:46:06 -0700 (PDT) Received: by 10.142.240.21 with HTTP; Tue, 6 May 2008 13:46:06 -0700 (PDT) Message-ID: Date: Tue, 6 May 2008 17:46:06 -0300 From: "Marcone Theisen" To: freebsd-ipfw@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Redirect internal traffic (only port 80) to another link X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 06 May 2008 21:11:55 -0000 Hi, I have 2 links, one em0 and other in vlan2 interface. My default route is em0. The problem is: I want to direct all internal Internet traffic (port 80) for the link in vlan2 interface. How to do it with the IPFW? Some information: Link em0 interface - 10.40.1.0 Interna network: em1 interface - 10.10.18.0 Link vlan2 interface - 192.168.7.0 The vlan2 interface is on Trunk port in switch. It's work. We have tried the following alternatives: I created another route: Route ADD 192.168.7.107 192.168.7.105 ipfw add 00019 divert from 8668 ip 10.10.18.0/24 to any 80 via vlan2 Traffic continued through dedicated link. ipfw add 00019 fwd 192.168.7.105 tcp from 10.10.18.0/24 to any 80 redirect the traffic on the link vlan2, but did not return anything. ipfw add 00019 divert from 8669 ip 10.10.18.0/24 to any 80 via vlan2 natd-s-m-n-vlan2 p 8669 Anything! All attempts without success. Thus, how I can redirect my internal Internet traffic to the VLAN2 link with IPFW ? Thank's, Marcone