From owner-freebsd-questions@FreeBSD.ORG Tue Jun 22 15:36:42 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A565816A4F5 for ; Tue, 22 Jun 2004 15:36:42 +0000 (GMT) Received: from mproxy.gmail.com (rproxy.gmail.com [64.233.170.197]) by mx1.FreeBSD.org (Postfix) with SMTP id 4925243D5C for ; Tue, 22 Jun 2004 15:36:42 +0000 (GMT) (envelope-from jason.n.taylor@gmail.com) Received: by mproxy.gmail.com with SMTP id 73so134854rne for ; Tue, 22 Jun 2004 08:36:39 -0700 (PDT) Received: by 10.38.104.24 with SMTP id b24mr4754rnc; Tue, 22 Jun 2004 08:36:39 -0700 (PDT) Message-ID: Date: Tue, 22 Jun 2004 16:36:39 +0100 From: Jason Taylor To: Matt Juszczak In-Reply-To: <40D82E03.1000306@atopia.net> Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit References: <40D3752A.8000809@atopia.net> <40D46636.1020909@mac.com> <3514.134.210.7.179.1087850914.squirrel@134.210.7.179> <40D74EBA.2010402@atopia.net><40D82E03.1000306@atopia.net> cc: freebsd-questions@freebsd.org Subject: Re: Redirection with a bridge ? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 22 Jun 2004 15:36:42 -0000 > What are some of the other approaches (if you dont mind). I can't > really do a NAT, I'd really like to stay with a bridge and not do any > routing. I'm using a bridging setup (specifically to grab all web traffic and divert it all to a proxy/policy manager), I had to perform a kernel patch in order to use fwd on bridged packets. Try here: http://lists.freebsd.org/pipermail/freebsd-ipfw/2003-September/000526.html The briding code in OpenBSD is quite good and ipf will let you use a similar approach out of the box and is a bit more convenient than patching. Hope this is helpfull. Jason.