Date: Thu, 22 Jun 2006 17:53:47 +0200 From: =?ISO-8859-1?Q?S=E9bastien_AVELINE?= <saveline@alinto.net> To: freebsd-pf@freebsd.org Subject: pf and policy routing Message-ID: <449ABD0B.2040706@alinto.net>
next in thread | raw e-mail | index | archive | help
Hi,
I would like to have some advises on pf. I'd like to use pf for
clustering a firewall and using pfsync.
Actually I use a Linux Box to do this. The problem is that I have
specific rules for routing with iproute2 because I got a lot of
different subnets with multi-homing. It seems that freebsd support
policy routing only with ipfw.
My question is : is it possible to use ipfw just for policy routing and
pf just for packet filtering ?
For example I want to to do something like that :
I had a default gateway (a) but if I received a packet from subnet(c) to
subnet(d) --> use an another default gateway(y)
a
packet from subnet(a) to subnet(x) --> use an another default gateway(y)
I wonder if route-to of pf is good for my exemple or if I should try
something else like ipfw for routing and pf for firewalling as I said
above. Actually I'm using freebsd 6.1 for some tests.
Thanx for your answers.
Sebastien AVELINE
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?449ABD0B.2040706>