Date: Thu, 26 Sep 2002 18:33:18 +0200 From: "David Zimmer" <david.zimmer@zimmer-medienhaus.de> To: freebsd-ipfw@freebsd.org, freebsd-net@freebsd.org Cc: dominik.brettnacher@zimmer-medienhaus.de Subject: Forwarding selected broadcasts with ipfw Message-ID: <fc.0073f94100281ab80073f94100281ab8.281ae2@zimmer-medienhaus.de>
next in thread | raw e-mail | index | archive | help
Hello, we are using ipfw on FreeBSD 4.7 PRERELEASE as our main firewall. The box has 5 ethernet segments connected to it that serve - DMZ - DMZ Cisco CallManager - private LAN, Workstations - private LAN, Cisco IP Phones - public LAN, Internet Due to a new application that we are introducing we need to forward broadcast from the private LAN, Workstations into the DMZ. This is necessary for the clients to autoconnect to the server. I thought the forward action in the ipfw rule body could do this but I cannot get it to work. Here is what I did 1. I introduced a rule that should forward the packets, this rule looks like fwd 212.88.130.135 udp from any to 255.255.255.255 19813 2. The incoming packets match this rule according to the output of ipfw show 3. The forwarded packet never gets out onto any interface though, according to tcpdump My questions now are: a) What happens to the disapperaring packets b) is there a way to debug what happens to the packet after the above rule (#1) matches c) what other configuration might solve our problem Before we installed ipfw we just had a Cisco 3640 with several VLANs and appropriate access lists. Cisco offers the option of a so called "ip helper address" to forward selected broadcasts. Thanks for any help, David Zimmer ================================================================ David A. Zimmer Zimmer Medienhaus AG mailto: dz@zimmer-medienhaus.de Trierer Strasse 223-225 http://www.zimmer-medienhaus.de 66663 Merzig, Germany Phone: +49 6861 9312-0 Fax: +49 6861 9312-13 -- all kind of spam to this email address forbidden/keine Werbemails -- ================================================================ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?fc.0073f94100281ab80073f94100281ab8.281ae2>