Skip site navigation (1)Skip section navigation (2) 
Date:      Sat, 11 Aug 2007 03:27:16 +0200
From:      Max Laier <max@love2party.net>
To:        freebsd-net@freebsd.org
Cc:        Tieres White <tieres.white@gmail.com>
Subject:   Re: bridging, pf, and rdr
Message-ID:  <200708110327.28582.max@love2party.net>
In-Reply-To: <b8e746fc0708101647s6334ff8bv429fe6903b795a8e@mail.gmail.com>
References:  <b8e746fc0708101647s6334ff8bv429fe6903b795a8e@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help 
--nextPart2167239.YuTCJiHSzM
Content-Type: text/plain;
  charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline

On Saturday 11 August 2007, Tieres White wrote:
> I have a bridging firewall in place using FreeBSD 6.1, if_bridge, and
> pf. I'd like to be able to block IP addresses by default on the bridge,
> but selectively allow people through.  This is easily accomplished with
> a table, however it would be nice if I could also alert people as to
> why they aren't currently allowed access through the firewall.  rdr
> rules would appear to accomplish this, but for some reason, it just
> doesn't seem to work.
>
> Has anyone here done anything like this?  Do you have any suggestions?

There was a good description on the dragonfly wiki (which is MIA at the=20
moment).  Here is a google cache link:=20
http://www.google.com/search?q=3Dcache:JvXtjCKxbjYJ:wiki.dragonflybsd.org/i=
ndex.cgi/HowtoFilteringBridge+pf+rdr+bridge&hl=3Den&ct=3Dclnk&cd=3D8

=2D-=20
/"\  Best regards,                      | mlaier@freebsd.org
\ /  Max Laier                          | ICQ #67774661
 X   http://pf4freebsd.love2party.net/  | mlaier@EFnet
/ \  ASCII Ribbon Campaign              | Against HTML Mail and News

--nextPart2167239.YuTCJiHSzM
Content-Type: application/pgp-signature; name=signature.asc 
Content-Description: This is a digitally signed message part.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.4 (FreeBSD)

iD8DBQBGvRCAXyyEoT62BG0RAuTzAJ9v/+QKK7vct1cUi1a+Z3tK6sh1JACfW8St
j4BcNEILdOARtcktlXIqgww=
=NBJD
-----END PGP SIGNATURE-----

--nextPart2167239.YuTCJiHSzM--

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200708110327.28582.max>