From owner-freebsd-questions Wed Nov 8 12:47:55 2000 Delivered-To: freebsd-questions@freebsd.org Received: from kauha.saunalahti.fi (kauha.saunalahti.fi [195.197.53.227]) by hub.freebsd.org (Postfix) with ESMTP id E287137B479 for ; Wed, 8 Nov 2000 12:47:21 -0800 (PST) Received: from turkuamk.fi (DCXCII.tdyn.saunalahti.fi [195.197.80.192]) by kauha.saunalahti.fi (8.10.1/8.10.1) with ESMTP id eA8Ko3e08317 for ; Wed, 8 Nov 2000 22:50:19 +0200 (EET) Message-ID: <3A09BC43.1DBA6F2E@turkuamk.fi> Date: Wed, 08 Nov 2000 22:49:07 +0200 From: Evren Yurtesen X-Mailer: Mozilla 4.74 [en] (Win95; U) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-questions@freebsd.org Subject: pipes,IPFW and simple question Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I have a little problem over here. I have searched the mailing list archives but couldnt find anything close... I made ipfw,dummynet etc. work perfectly but need a creative idea of the conf file I should use. I want to limit bandwidth over an interface but also I want to use ipfw's firewall capabilities but the search terminates when ipfw comes to a pipe command. Ok you might say that I can make ipfw continue search after pipe by setting a variable with sysctl and I did that then the problem is that I want users behind this host to connect to X machine without the bandwidth limit but however I put the rules these users are caught by the other bandwidth limit rule. I can handle this if the ipfw terminates the search when it finds a rule because I can put a rule about this X machine first and another rule about the rest of the internet then I cant use ipfw's firewall capabilities. I can use ipfw's skipto option to continue from another rule when the pipe matches but then the problem is with ipfw list numbers. I sometimes add rules in the middle of the rules in my rc.firewall file and all the numbers change at the next time I reboot the firewall box. Is this a kind of paradox? any creative ideas? Evren To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message