From owner-freebsd-questions Tue Oct 20 17:54:07 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id RAA24680 for freebsd-questions-outgoing; Tue, 20 Oct 1998 17:54:07 -0700 (PDT) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from alpo.whistle.com (alpo.whistle.com [207.76.204.38]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id RAA24675 for ; Tue, 20 Oct 1998 17:54:04 -0700 (PDT) (envelope-from julian@whistle.com) Received: (from daemon@localhost) by alpo.whistle.com (8.8.5/8.8.5) id RAA23966; Tue, 20 Oct 1998 17:49:26 -0700 (PDT) Received: from current1.whistle.com(207.76.205.22) via SMTP by alpo.whistle.com, id smtpdg23961; Wed Oct 21 00:49:22 1998 Date: Tue, 20 Oct 1998 17:49:14 -0700 (PDT) From: Julian Elischer To: Dan Langille cc: Dan Busarow , Matt Prigge , FreeBSD Questions List Subject: Re: More IPFW/natd trouble, but I'm close! In-Reply-To: <199810201948.IAA17502@cyclops.xtra.co.nz> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG WARNING! this changes in 3.0: On Wed, 21 Oct 1998, Dan Langille wrote: > On 20 Oct 98, at 10:03, Dan Busarow wrote: > > packets before they are dropped by the firewall. The firewall rules > > ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ will be run again on > > each packet after translation by natd, minus any divert rules. > On 3.0 the rules are restarted at the first rule after the divert rule.. 1 sdafasdf asdf sa asdf as 2 divert xxxx ip from any to any in rcv ed0 3 blah blah blah the order of the rules will be: 1 2 divert 2a translated packet reinjected AFTER rule 2 3 julian To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message