From owner-freebsd-net  Mon Mar 26 22:57:14 2001
Delivered-To: freebsd-net@freebsd.org
Received: from info.iet.unipi.it (info.iet.unipi.it [131.114.9.184])
	by hub.freebsd.org (Postfix) with ESMTP id 236E737B719
	for <freebsd-net@FreeBSD.ORG>; Mon, 26 Mar 2001 22:57:12 -0800 (PST)
	(envelope-from luigi@info.iet.unipi.it)
Received: (from luigi@localhost)
	by info.iet.unipi.it (8.9.3/8.9.3) id IAA78972;
	Tue, 27 Mar 2001 08:56:42 +0200 (CEST)
	(envelope-from luigi)
From: Luigi Rizzo <luigi@info.iet.unipi.it>
Message-Id: <200103270656.IAA78972@info.iet.unipi.it>
Subject: Re: netgraph ng_bridge and ipfilter
In-Reply-To: <200103262303.f2QN3cA40257@arch20m.dellroad.org> from Archie Cobbs
 at "Mar 26, 2001 03:03:38 pm"
To: Archie Cobbs <archie@dellroad.org>
Date: Tue, 27 Mar 2001 08:56:41 +0200 (CEST)
Cc: Peter.Blok@inter.NL.net, freebsd-net@FreeBSD.ORG
X-Mailer: ELM [version 2.4ME+ PL61 (25)]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

> > > completely when a bridge is created with netgraph. I want to create a
> > > transparent firewall without NAT. I know OpenBSD has a bridge that works,
...
> Netgraph should be completely orthogonal to the firewall stuff,
> i.e., they don't interact at all.

in this case, this person seemed to _need_ the interaction in
order to have a bridging firewall

	cheers
	luigi


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message