Date: Tue, 18 Nov 2003 21:06:33 -0500 (EST) From: Mathieu Vaillancourt <math@degaspe.orco.ca> To: freebsd-ipfw@FreeBSD.ORG Subject: problem with fwd rule Message-ID: <Pine.BSF.4.21.0311182040510.5807-100000@degaspe.orco.ca>
next in thread | raw e-mail | index | archive | help
i tried to setup a source routing firewall to split traffic between two ISP connection, based on to comment i have found at: http://docs.freebsd.org/mail/archive/2002/freebsd-ipfw/20020901.freebsd-ipfw.html more specificly, using 'fwd' on incoming packets from the internal networks, with a rule like: fwd ISP2_GATEWAY ip from INTERNAL_IP_X to any in via INTERNAL_IF and after that hoping to catch the packet again on the external interface to divert it to natd. what happens is that the packet goes through the fwd rule, and never come back to the firewall, so ISP2_GATEWAY receive a packet with an internal(private) return address. in the above discussion the author seemed to say that the fowarding of incoming packet was just included recently (in 2002). is anyone knows if i have to setup a sysctl for that or some compile options? i use releng 4.8 compiled with ipfw2 should i upgrade something or change to ipfw1? any ideas would be apreciated math
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0311182040510.5807-100000>