From owner-freebsd-questions Tue May 2 19:31: 5 2000 Delivered-To: freebsd-questions@freebsd.org Received: from cc942873-a.ewndsr1.nj.home.com (cc942873-a.ewndsr1.nj.home.com [24.2.89.207]) by hub.freebsd.org (Postfix) with ESMTP id 0579637B8CE for ; Tue, 2 May 2000 19:30:56 -0700 (PDT) (envelope-from cjc@cc942873-a.ewndsr1.nj.home.com) Received: (from cjc@localhost) by cc942873-a.ewndsr1.nj.home.com (8.9.3/8.9.3) id WAA06504; Tue, 2 May 2000 22:30:20 -0400 (EDT) (envelope-from cjc) Date: Tue, 2 May 2000 22:30:20 -0400 From: "Crist J. Clark" To: Database Cc: freebsd-questions@FreeBSD.ORG Subject: Re: ipfw Message-ID: <20000502223020.C6021@cc942873-a.ewndsr1.nj.home.com> Reply-To: cjclark@home.com References: <000a01bfb4a5$14a56390$0201a8c0@visualprogram.ne.mediaone.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0i In-Reply-To: <000a01bfb4a5$14a56390$0201a8c0@visualprogram.ne.mediaone.net>; from petedonadio@mediaone.net on Tue, May 02, 2000 at 10:12:49PM -0400 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG [Your email is all on one line. Please put newlines in at about the 72 column mark or so.] On Tue, May 02, 2000 at 10:12:49PM -0400, Database wrote: > I have a multihomed ethernet card that has two ip static address. One address i would like to allow all traffic. The second I am using natd to redirect the address to a different machine. I do not want to set the firewall type to open. If I set it to filename or simple it will not allow any traffic through on either ip address. Could you help me with the configuration of ipfw. The 'simple' setting is not meant for a machine doing NAT. When you use a filename, what do you put in the file? Could you post the rules you are trying to use? We need more of an idea of what you are trying to do to be of any help. But if you really want to forward all traffic bound for a particular address, after you do the divert(4) rule for natd(8), pass all traffic to that host before heading to more restrictive rules. -- Crist J. Clark cjclark@home.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message