Date: Fri, 20 Apr 2007 09:23:11 -0300 From: AT Matik <asstec@matik.com.br> To: freebsd-ipfw@freebsd.org Cc: Lubomir Georgiev <0shady0recs0@gmail.com> Subject: Re: ipfw with nat - allowing by MAC address Message-ID: <200704200923.11949.asstec@matik.com.br> In-Reply-To: <937e203f0704191400i10ae5751ka41c17e40e4eff99@mail.gmail.com> References: <937e203f0704191400i10ae5751ka41c17e40e4eff99@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thursday 19 April 2007 18:00, Lubomir Georgiev wrote: > Hi all, > > I've lost 2 nights sleep over this and I still can't get through it! - > Here's the thing : > > I have a FreeBSD box with ipfw and natd running. > My internal ifaces are > internal - xl0 /3com/ - ip 192.168.1.254 > external - fxp0 - 10.11.0.33 > > ipfw l > 00200 skipto 1200 ip from 192.168.1.100 to not me via fxp0 > #00400 skipto 1200 ip from 192.168.1.0/24 to not me layer2 out > #00600 skipto 1200 ip from any to any MAC any 00:19:d2:36:b8:48 layer2 in you will not have so much luck with this until you are loading the bridge o= r=20 if_bridge module, on a router this will not work Jo=E3o A mensagem foi scaneada pelo sistema de e-mail e pode ser considerada segura. Service fornecido pelo Datacenter Matik https://datacenter.matik.com.br
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200704200923.11949.asstec>