From owner-freebsd-ipfw Fri Oct 4 4:14:16 2002 Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 16C6C37B401 for ; Fri, 4 Oct 2002 04:14:15 -0700 (PDT) Received: from mail1.ing.nl (mail1.ing.nl [145.221.93.2]) by mx1.FreeBSD.org (Postfix) with ESMTP id C6FB243E4A for ; Fri, 4 Oct 2002 04:14:13 -0700 (PDT) (envelope-from Danny.Carroll@mail.ing.nl) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4910.0300 Content-Class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Subject: Question about to/from matching. Date: Fri, 4 Oct 2002 13:14:00 +0200 Message-ID: X-MS-Has-Attach: X-MS-TNEF-Correlator: Importance: normal Thread-Topic: Question about to/from matching. thread-index: AcJrlyPPETTLsZSgQfSjuiyNqVt/gg== From: To: X-OriginalArrivalTime: 04 Oct 2002 11:14:00.0792 (UTC) FILETIME=[23FEA580:01C26B97] Sender: owner-freebsd-ipfw@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG I have not got my copy of "Internetworking with TCP/IP Vol. x" with me = (someone borrowed it indefinatly) so forgive this rather basic question. I have a rule, very early in my ruleset that says: deny log ip from any to 10.0.0.0/8 via xl0 but my gateway (and default route) is 10.0.0.100 Now, it's working the way I want it to... In that it sends outside = stuff to 10.0.0.100 and I can't telnet directly to the gateway. But I = am curious why this rule does not get inforced. What does a TCP packet look like when it's being sent *to* a remote = destination, but via a gateway. Does the ip stack translate 10.0.0.100 = to an ethernet address and pass it on that way? -D -----------------------------------------------------------------=0A= ATTENTION:=0A= The information in this electronic mail message is private and=0A= confidential, and only intended for the addressee. Should you=0A= receive this message by mistake, you are hereby notified that=0A= any disclosure, reproduction, distribution or use of this=0A= message is strictly prohibited. Please inform the sender by=0A= reply transmission and delete the message without copying or=0A= opening it.=0A= =0A= Messages and attachments are scanned for all viruses known.=0A= If this message contains password-protected attachments, the=0A= files have NOT been scanned for viruses by the ING mail domain.=0A= Always scan attachments before opening them.=0A= ----------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message