From owner-freebsd-ipfw Thu Feb 8 10:47:44 2001 Delivered-To: freebsd-ipfw@freebsd.org Received: from mail.biographix.com (unknown [207.236.111.133]) by hub.freebsd.org (Postfix) with ESMTP id 7FCA237B6AA for ; Thu, 8 Feb 2001 10:47:26 -0800 (PST) Received: from bottleneck2000 ([192.168.1.12]) by mail.biographix.com (8.11.1/8.11.1) with SMTP id f18Imm642324 for ; Thu, 8 Feb 2001 13:48:49 -0500 (EST) Message-ID: <004c01c09200$87028b00$0c01a8c0@bottleneck2000> From: "Elliott Perrin" To: Subject: Question regarding PPPoE and IPFW Date: Thu, 8 Feb 2001 13:54:11 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6700 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Sender: owner-freebsd-ipfw@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I am setting up a gateway machine for a friend at his home and i was wondering if ipfw will work over a PPPoE link, and whether or not I should filter traffic based upon the Ethernet Interface or based upon the tun0 interface created when a connection occurs. I also have a question about the packet filtering process. I have a LAN behind an FBSD 4.2 box doing NAT and IPFW. There is also a separate LAN (DMZ if you will) where the public servers reside. From what I have read in the ipfw man pages the divert natd all from any to any rule should change the packets from our internal LAN. However the only way the LAN is able to get out to the internet is with an allow all from 192.168.1.0/24 to any rule. I was just wondering (for future reference) is this normal behavior? Regards, Elliott Perrin eperrin@bigorbit.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message