From owner-freebsd-stable Thu Sep 21 8:11: 3 2000 Delivered-To: freebsd-stable@freebsd.org Received: from jade.chc-chimes.com (jade.chc-chimes.com [216.28.46.6]) by hub.freebsd.org (Postfix) with ESMTP id 1BF8137B422 for ; Thu, 21 Sep 2000 08:11:01 -0700 (PDT) Received: by jade.chc-chimes.com (Postfix, from userid 1001) id 68B2C1C41; Thu, 21 Sep 2000 11:11:00 -0400 (EDT) Date: Thu, 21 Sep 2000 11:11:00 -0400 From: Bill Fumerola To: Adrian Pavlykevych Cc: stable@freebsd.org Subject: Re: Strange behavior of ipfw "fwd" rule Message-ID: <20000921111100.I66839@jade.chc-chimes.com> References: <20000921180334.D10274@polynet.lviv.ua> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0i In-Reply-To: <20000921180334.D10274@polynet.lviv.ua>; from pam@polynet.lviv.ua on Thu, Sep 21, 2000 at 06:03:35PM +0300 X-Operating-System: FreeBSD 3.3-STABLE i386 Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Thu, Sep 21, 2000 at 06:03:35PM +0300, Adrian Pavlykevych wrote: > I'm experiencing strange problem with "fwd" rules of ipfw > > When I configure ipfw with following rule: > "fwd 127.0.0.1,23 tcp from any to any" > to provide transparent proxy, first time the rule is triggered, > machine looses all IP connectivity. That's because you're telling ipfw to take EVERY tcp packet and cram in into that transparent proxy, which obviously isn't what you want. More likely you want something like fwd 127.0.0.1,8080 tcp from any to any 80 or something. I've never used transparent proxy, but I can tell you what ipfw does[1]. -- Bill Fumerola - Network Architect, BOFH / Chimes, Inc. billf@chimesnet.com / billf@FreeBSD.org 1. Oh, can I tell you what ipfw does. Just ask..... To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message