Date: Sat, 11 Aug 2007 03:27:16 +0200 From: Max Laier <max@love2party.net> To: freebsd-net@freebsd.org Cc: Tieres White <tieres.white@gmail.com> Subject: Re: bridging, pf, and rdr Message-ID: <200708110327.28582.max@love2party.net> In-Reply-To: <b8e746fc0708101647s6334ff8bv429fe6903b795a8e@mail.gmail.com> References: <b8e746fc0708101647s6334ff8bv429fe6903b795a8e@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--nextPart2167239.YuTCJiHSzM Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Saturday 11 August 2007, Tieres White wrote: > I have a bridging firewall in place using FreeBSD 6.1, if_bridge, and > pf. I'd like to be able to block IP addresses by default on the bridge, > but selectively allow people through. This is easily accomplished with > a table, however it would be nice if I could also alert people as to > why they aren't currently allowed access through the firewall. rdr > rules would appear to accomplish this, but for some reason, it just > doesn't seem to work. > > Has anyone here done anything like this? Do you have any suggestions? There was a good description on the dragonfly wiki (which is MIA at the=20 moment). Here is a google cache link:=20 http://www.google.com/search?q=3Dcache:JvXtjCKxbjYJ:wiki.dragonflybsd.org/i= ndex.cgi/HowtoFilteringBridge+pf+rdr+bridge&hl=3Den&ct=3Dclnk&cd=3D8 =2D-=20 /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --nextPart2167239.YuTCJiHSzM Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQBGvRCAXyyEoT62BG0RAuTzAJ9v/+QKK7vct1cUi1a+Z3tK6sh1JACfW8St j4BcNEILdOARtcktlXIqgww= =NBJD -----END PGP SIGNATURE----- --nextPart2167239.YuTCJiHSzM--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200708110327.28582.max>