From owner-freebsd-questions@FreeBSD.ORG Thu Feb 26 14:13:23 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1B7C316A4D6 for ; Thu, 26 Feb 2004 14:13:23 -0800 (PST) Received: from chen.org.nz (chen.org.nz [210.54.19.51]) by mx1.FreeBSD.org (Postfix) with ESMTP id CA86D43D31 for ; Thu, 26 Feb 2004 14:13:22 -0800 (PST) (envelope-from jonc@chen.org.nz) Received: by chen.org.nz (Postfix, from userid 1000) id 1BC2613621; Fri, 27 Feb 2004 11:13:21 +1300 (NZDT) Date: Fri, 27 Feb 2004 11:13:21 +1300 From: Jonathan Chen To: "Shaun T. Erickson" Message-ID: <20040226221320.GA16546@grimoire.chen.org.nz> References: <403E4DE3.60103@ste-land.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <403E4DE3.60103@ste-land.com> User-Agent: Mutt/1.4.2.1i cc: freebsd-questions@freebsd.org Subject: Re: Looking for ipfw info. X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 26 Feb 2004 22:13:23 -0000 On Thu, Feb 26, 2004 at 02:49:55PM -0500, Shaun T. Erickson wrote: [...] > Can someone who isn't trying to sell me something, corroborate anything > he's said? It would be nice to hear from someone else, too. :) Here's an example of using ipfw+natd with stateful rules. The basic idea is to use the stateful rules on the inside interfaces: http://lists.freebsd.org/pipermail/freebsd-questions/2004-January/032694.html Cheers. -- Jonathan Chen ---------------------------------------------------------------------- Do not take life too seriously. You will never get out of it alive.