From owner-freebsd-questions Tue Oct 15 10:51:30 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 147FB37B404 for ; Tue, 15 Oct 2002 10:51:29 -0700 (PDT) Received: from srv.flncs.com (srv.flncs.com [12.27.148.74]) by mx1.FreeBSD.org (Postfix) with ESMTP id AF05643EAF for ; Tue, 15 Oct 2002 10:51:28 -0700 (PDT) (envelope-from moti@flncs.com) Received: from moti (cylex [12.27.148.78]) by srv.flncs.com (Postfix) with ESMTP id 59596106B2; Tue, 15 Oct 2002 13:52:44 -0400 (EDT) Message-ID: <012701c27471$c0f95f50$fd6e34c6@moti> From: "Moti Levy" To: "Tim Radigan" , References: <3DAC4FFE.9040001@touchdynamic.com> Subject: Re: ipfiltering and ppoe question Date: Tue, 15 Oct 2002 13:38:59 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG you should use all your rules using tun0 and not the rl1 interface . there's a good reading here http://www.realo.ca/BSDinstall.html ------------------------------------------------- Moti www.flncs.com ------------------------------------------------- be careful what you wish for ... ------------------------------------------------- ----- Original Message ----- From: "Tim Radigan" To: Sent: Tuesday, October 15, 2002 1:27 PM Subject: ipfiltering and ppoe question > hi people.. i have question regarding ipfiltering and pppoe.. > > here at the office we have a pppoe connection.. i'm using ipfiltering to > block packets, etc.. now.. my question.. > > when ppp connects via pppoe, my nic (rl1) is not assigned an external ip > address.. however, the tun0 interface is.. when i'm designing my > ipf.rules file, should i set the rules to block and/or pass on rl1, or > the tun0 interface? > > same goes for my ipnat.rules file.. should i map the rl1 interface or > the tun0 interface? > > any help would be appreciated.. > > Tim Radigan @ Touch Dynamic > http://www.touchdynamic.com > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message