From owner-freebsd-questions@FreeBSD.ORG Sun Jun 28 11:13:54 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B2E4C1065672 for ; Sun, 28 Jun 2009 11:13:54 +0000 (UTC) (envelope-from anton@sng.by) Received: from mail-bw0-f210.google.com (mail-bw0-f210.google.com [209.85.218.210]) by mx1.freebsd.org (Postfix) with ESMTP id 471888FC16 for ; Sun, 28 Jun 2009 11:13:54 +0000 (UTC) (envelope-from anton@sng.by) Received: by bwz6 with SMTP id 6so317015bwz.43 for ; Sun, 28 Jun 2009 04:13:53 -0700 (PDT) Received: by 10.204.124.7 with SMTP id s7mr5775796bkr.189.1246187633179; Sun, 28 Jun 2009 04:13:53 -0700 (PDT) Received: from ROOT (port-103-adslby-pool46.infonet.by [81.25.46.103]) by mx.google.com with ESMTPS id f31sm3336918fkf.38.2009.06.28.04.13.52 (version=TLSv1/SSLv3 cipher=OTHER); Sun, 28 Jun 2009 04:13:52 -0700 (PDT) Date: Sun, 28 Jun 2009 14:14:00 +0300 From: Anton X-Mailer: The Bat! (v3.71.01) Professional X-Priority: 3 (Normal) Message-ID: <499941928.20090628141400@sng.by> To: freebsd-questions@freebsd.org Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 Content-Type: text/plain; charset="windows-1251" X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: IPFW: Need some help X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Anton List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 28 Jun 2009 11:13:55 -0000 Hello all, I'm new to *nix and now, while configuring IPFW Firewall on FreeBSD 7.2 = has stuck in a problem: After packet from my network is passed to natd demon - it is returning t= o firewall (it is normal, as I think ;-) ), but I see another abnormal thin= g: when it is returned to firewall, it does not come under rule which state= s to allow packet from some host in my network, and goes under rule which a= llows packets from FreeBSD box. I.e.: packet from 192.168.0.2, directed to 86.57.250.18 comes to freebsd= box. First, it comes to rule, which NATs it to interface ng0. Then, after = NAT rule, there is rule, which allows packet flow from 192.168.0.2 to 86.57= .250.18 out via ng0. But, IPFW does not show, that any packet is allowed by= this rule - is rather shows that packets are allowed by another rule: allo= w all from me to any. Need help in explaining in this problem, and how to alter the things in = the way i need it (if it is real) -- -- Best regards, Anton = ; [1]mailto:anton@sng.by Administrator Feel free to contact me via ICQ 363780596 via Skype dobryak47 via phone +375 29 3320987 References 1. 3D"mailto:anton@sng.by"