From owner-freebsd-ipfw@FreeBSD.ORG Fri Jul 9 16:43:55 2004 Return-Path: Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 205EC16A4CE for ; Fri, 9 Jul 2004 16:43:55 +0000 (GMT) Received: from mbox.ibctech.ca (dev.eagle.ca [209.167.58.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 317A643D53 for ; Fri, 9 Jul 2004 16:43:54 +0000 (GMT) (envelope-from iaccounts@ibctech.ca) Received: (qmail 6093 invoked by uid 1002); 9 Jul 2004 16:44:34 -0000 Received: from iaccounts@ibctech.ca by pearl.ibctech.ca by uid 89 with qmail-scanner-1.22 (clamscan: 0.73. spamassassin: 2.63. Clear:RC:1(127.0.0.1):. Processed in 0.988695 secs); 09 Jul 2004 16:44:34 -0000 Received: from unknown (HELO pearl.ibctech.ca) (127.0.0.1) by localhost.ibctech.ca with SMTP; 9 Jul 2004 16:44:33 -0000 Received: from 209.167.16.15 (SquirrelMail authenticated user steve@ibctech.ca); by pearl.ibctech.ca with HTTP; Fri, 9 Jul 2004 12:44:33 -0400 (EDT) Message-ID: <3743.209.167.16.15.1089391473.squirrel@209.167.16.15> Date: Fri, 9 Jul 2004 12:44:33 -0400 (EDT) From: "Steve Bertrand" To: freebsd-ipfw@freebsd.org User-Agent: SquirrelMail/1.4.3a X-Mailer: SquirrelMail/1.4.3a MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal Subject: IPFW fwd to remote address X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 09 Jul 2004 16:43:55 -0000 I am trying to set up a forward from one machine to another on a remote network across the Internet. I want to receive requests on one box on port 8080 and simply forward them to a remote machine on the same port. I have tried the following rules, to no avail. I have IPFIREWALL_FORWARD in my kernel (4.10), and # ipfw show reports the hits to the rule. # ipfw add 1000 fwd 216.209.x.x tcp from any to me 8080 # ipfw add 1000 fwd 216.209.x.x,8080 tcp from any to me 8080 # ipfw add 1000 fwd 216.209.x.x tcp from any to me 8080 # ipfw add 1000 fwd 216.209.x.x,8080 from any to any 8080 I can not see the packets going back out of the machine, nor does ipfw log anything at the other end. # tcpdump at the remote end does not pick up any traffic. Does this have something to do with the fact that I am going across the Internet, and it is trying to route the packets back to itself (I understand the dest does not get changed). If so, how could I re-write the packets so they will get delivered? Tks for any help on this Steve