From owner-freebsd-questions@FreeBSD.ORG Tue Mar 7 16:11:55 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BAD3616A422 for ; Tue, 7 Mar 2006 16:11:55 +0000 (GMT) (envelope-from tillman@seekingfire.com) Received: from mail.seekingfire.com (caliban.seekingfire.com [24.89.83.8]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4FE0C43D45 for ; Tue, 7 Mar 2006 16:11:55 +0000 (GMT) (envelope-from tillman@seekingfire.com) Received: by mail.seekingfire.com (Postfix, from userid 500) id EB94F9F; Tue, 7 Mar 2006 10:11:54 -0600 (CST) Date: Tue, 7 Mar 2006 10:11:54 -0600 From: Tillman Hodgson To: freebsd-questions@freebsd.org Message-ID: <20060307161154.GP95501@seekingfire.com> References: <20060307125859.1768f85e@localhost> <20060307154951.GL95501@seekingfire.com> <20060307180748.75c157ff@localhost> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20060307180748.75c157ff@localhost> X-Habeas-SWE-1: winter into spring X-Habeas-SWE-2: brightly anticipated X-Habeas-SWE-3: like Habeas SWE (tm) X-Habeas-SWE-4: Copyright 2002 Habeas (tm) X-Habeas-SWE-5: Sender Warranted Email (SWE) (tm). The sender of this X-Habeas-SWE-6: email in exchange for a license for this Habeas X-Habeas-SWE-7: warrant mark warrants that this is a Habeas Compliant X-Habeas-SWE-8: Message (HCM) and not spam. Please report use of this X-Habeas-SWE-9: mark in spam to . X-GPG-Key-ID: 828AFC7B X-GPG-Fingerprint: 5584 14BA C9EB 1524 0E68 F543 0F0A 7FBC 828A FC7B X-GPG-Key: http://www.seekingfire.com/personal/gpg_key.asc X-Urban-Legend: There is lots of hidden information in headers X-Tillman-rules: yes he does User-Agent: Mutt/1.5.11 Subject: Re: linux iproute2 replacement X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 07 Mar 2006 16:11:55 -0000 On Tue, Mar 07, 2006 at 06:07:48PM +0200, Petre Bandac wrote: > On Tue, 7 Mar 2006 09:49:51 -0600 Anno Domini, the honourable Tillman > Hodgson wrote using one of his keyboards: > > > On Tue, Mar 07, 2006 at 12:58:59PM +0200, Petre Bandac wrote: > > > hallo > > > > > > I am trying to migrate a dual-homed linux box to freebsd; how can I > > > achieve the src routing iproute2 does on freebsd ? > > > > There isn't currently a direct routing equivalent. I "cheat" and use > > IPF like so (the IPs are faked): > > > > # source-IP routed traffic > > # Note that the "on 'interface'" has to be the one with my default > > route pass out quick on hme0 to tun6 from 10.0.0.3/24 > > to !192.168.0.0/16 keep state block in on tun6 from any to > > 10.0.0.3/24 head 200 ... group 200 rules follow ... > > > > You can do the same with IPFW and PF. > > hoping for a full solution :) I seem to recall that it was on Andre's "to-do" list of network improvements. I have no idea where that's at, though. I'd also love a full set of policy routing capabilities ... enough rope to do sometime silly, at least ;-) > can it be done only with ipfw ? if yes, how ? With the "fwd" keyword, as per the man page. -T -- "The future arrives one day at a time. It's like the frog in the pot." -- Ernest Lilley