Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 9 Apr 2003 16:31:50 -0500
From:      "Shawn Barnhart" <swb@grasslake.net>
To:        <freebsd-ipfw@freebsd.org>
Subject:   Re: fwd and bridging
Message-ID:  <060f01c2fedf$6e911840$62229fc0@ad.campbellmithun.com>
References:  <00b301c2fb7a$218b14a0$0201a8c0@twinstar> <20030409212428.GA460@blossom.cjclark.org>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help

----- Original Message -----
From: "Crist J. Clark" <crist.clark@attbi.com>

> On Sat, Apr 05, 2003 at 07:49:03AM -0600, Shawn Barnhart wrote:
> > The manpage states that fwd rules (like for transparent proxying) will
not
> > match bridged packets.  Will they ever, or is there some fundamental
reason
> > they can't?
>
> Bridged packets are never processed at the IP layer, that is, they
> never get passed to the ip_input() function. All of the 'fwd' code
> lives in ip_input() and ip_output() at the IP layer and above.

Thanks for the explanation.  It's unfortunate they can't, it'd be ideal for
a transparent proxying setup or other interception without having to alter
clients routes.




Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?060f01c2fedf$6e911840$62229fc0>