Date: Wed, 9 Apr 2003 16:31:50 -0500 From: "Shawn Barnhart" <swb@grasslake.net> To: <freebsd-ipfw@freebsd.org> Subject: Re: fwd and bridging Message-ID: <060f01c2fedf$6e911840$62229fc0@ad.campbellmithun.com> References: <00b301c2fb7a$218b14a0$0201a8c0@twinstar> <20030409212428.GA460@blossom.cjclark.org>
next in thread | previous in thread | raw e-mail | index | archive | help
----- Original Message ----- From: "Crist J. Clark" <crist.clark@attbi.com> > On Sat, Apr 05, 2003 at 07:49:03AM -0600, Shawn Barnhart wrote: > > The manpage states that fwd rules (like for transparent proxying) will not > > match bridged packets. Will they ever, or is there some fundamental reason > > they can't? > > Bridged packets are never processed at the IP layer, that is, they > never get passed to the ip_input() function. All of the 'fwd' code > lives in ip_input() and ip_output() at the IP layer and above. Thanks for the explanation. It's unfortunate they can't, it'd be ideal for a transparent proxying setup or other interception without having to alter clients routes.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?060f01c2fedf$6e911840$62229fc0>