Date: Wed, 17 Sep 1997 14:55:46 -0500 (CDT) From: Jimbo Bahooli <griffin@blackhole.iceworld.org> To: "Alexander B. Povolotsky" <tarkhil@mgt.msk.ru> Cc: freebsd-hackers@FreeBSD.ORG Subject: Re: lets get ipfilter as default Message-ID: <Pine.BSF.3.96.970917145305.1376B-100000@blackhole.iceworld.org> In-Reply-To: <199709170541.JAA06072@asteroid.mgt.msk.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 17 Sep 1997, Alexander B. Povolotsky wrote: > > Seeing ipfilter sitting in /usr/src/contrib, in a mostly > Where? I couldn't find it... (2.2.2-RELENG) > > It is clearly better, and if its not integrated because it doesnt > > work, that is incorrect. When the first version came out with a freebsd > > port, proff patched it all up and it worked great. His patches may still > BTW, can anyone help me with setting up transparent proxy with ipfilter and it's ipnat? > > Alex. Make a file called, /etc/ipnat.rules, in it put. map <dev> <hostmask to proxy> -> <real ip> portmap tcp/udp 40000:60000 So, lets say your localnet is 192.168.0.*, and your real IP is 205.250.3.13, and the device with the ip 205.250.3.13 is de0. map de0 192.168.0.0/24 -> 205.250.3.13/32 portmap tcp/udp 40000:60000
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.970917145305.1376B-100000>