From owner-freebsd-questions  Tue Jun 12  8:28:12 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from smtp9.xs4all.nl (smtp9.xs4all.nl [194.109.127.135])
	by hub.freebsd.org (Postfix) with ESMTP id D847637B401
	for <freebsd-questions@freebsd.org>; Tue, 12 Jun 2001 08:28:00 -0700 (PDT)
	(envelope-from L.Wittebrood@Syntegra.NL)
Received: from list1.xs4all.nl (list1.xs4all.nl [194.109.6.52])
	by smtp9.xs4all.nl (8.9.3/8.9.3) with ESMTP id RAA24913
	for <freebsd-questions@freebsd.org>; Tue, 12 Jun 2001 17:27:59 +0200 (CEST)
Received: (from root@localhost)
	by list1.xs4all.nl (8.9.3/8.9.3) id RAA03662;
	Tue, 12 Jun 2001 17:27:59 +0200 (CEST)
From: "Lars Wittebrood" <L.Wittebrood@Syntegra.NL>
To: freebsd-questions@freebsd.org
X-Via: imploder /usr/local/lib/mail/news2mail/news2mail at list1.xs4all.nl
Subject: Re: IPFilter not blocking?
Date: Tue, 12 Jun 2001 17:25:32 +0200
Organization: XS4ALL Internet BV
Message-ID: <9g5cdq$qk8$1@news1.xs4all.nl>
In-Reply-To: <20010611151353.E24079-100000@localhost>
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

Richard,

the bridge functionality ONLY works with IPFW (the FreeBSD packet filter)
and NOT with IP Filter .....

Lars.


"Richard Lucas" <rlucas@threeh.COM> wrote in message
news:list.freebsd.questions#20010611151353.E24079-100000@localhost...
> I've setup a bridging firewall by adding the following to my kernel:
>
> options BRIDGE
> options IPFILTER
> options IPFILTER_LOG
> options IPFILTER_DEFAULT_BLOCK
>
> I also put in net.link.ether.bridge=1 in my sysctl.conf file. The problem
> I'm having is it isn't blocking anything. I even tried taking out my
> ruleset and just using block in all and that still doesn't block anything.
> The bridging works fine but it doesn't block any packets at all. Anyone
> have any ideas what the problem might be?
>
>
> -Richard
>
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-questions" in the body of the message



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message