From owner-freebsd-questions@FreeBSD.ORG  Thu Jun  3 02:25:53 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id E851516A4CE
	for <freebsd-questions@FreeBSD.org>;
	Thu,  3 Jun 2004 02:25:53 -0700 (PDT)
Received: from f13.mail.ru (f13.mail.ru [194.67.57.43])
	by mx1.FreeBSD.org (Postfix) with ESMTP id AA8E443D41
	for <freebsd-questions@FreeBSD.org>;
	Thu,  3 Jun 2004 02:25:53 -0700 (PDT)	(envelope-from zeroj@mail.ru)
Received: from mail by f13.mail.ru with local 
	id 1BVoTv-0005XZ-00
	for freebsd-questions@FreeBSD.org; Thu, 03 Jun 2004 13:25:51 +0400
Received: from [217.106.200.252] by msg.mail.ru with HTTP;
	Thu, 03 Jun 2004 13:25:51 +0400
From: =?koi8-r?Q?=22?=Sergey=?koi8-r?Q?=22=20?= <zeroj@mail.ru>
To: freebsd-questions@FreeBSD.org
Mime-Version: 1.0
X-Mailer: mPOP Web-Mail 2.19
X-Originating-IP: 192.168.0.2 via proxy [217.106.200.252]
Date: Thu, 03 Jun 2004 13:25:51 +0400
Content-Type: text/plain; charset=koi8-r
Content-Transfer-Encoding: 8bit
Message-Id: <E1BVoTv-0005XZ-00.zeroj-mail-ru@f13.mail.ru>
X-Mailman-Approved-At: Thu, 03 Jun 2004 05:34:05 -0700
Subject: ipfw, fwd questions
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: =?koi8-r?Q?=22?=Sergey=?koi8-r?Q?=22=20?= <zeroj@mail.ru>
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 03 Jun 2004 09:25:54 -0000

Good day!

i have the line in ipfw (FreeBSD 4.9) 

ipfw add fwd <ip1> all from <ip2> to any

In default, the system as soon as recieves the packet that conforms with this rule, this rule works out and the system cuts off the further

verification of compliance of recieved packet with the rules followed after fwd.


What should I do to continue the verification?

i.e. it looks like net.inet.ip.fw.one_pass: 1, in case of dummynet, if the variable sets at 0, the packet, geting out from the channel dummynet does not pass the system of network defence (protection) repeatedly, in case 1 after operation of the channel, the packet inserts for the system of network protection repeatedly in the next rule.