Date: Sat, 12 Sep 2009 15:32:54 +0800 From: Cypher Wu <cypher.w@gmail.com> To: freebsd-ipfw@freebsd.org Subject: Transparent firewall & Dynamic rules Message-ID: <f9f38a550909120032k2572fd3y30a1a5e5d0b457cd@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
I want to build a transparent firewall based on IPFW. For static rules this is fine, but for dynamic rules, ipfw uses keepalive packet to avoid deleting a dynamic rule that both ends are still alive but don't issue any traffic for a long time. But this means the firewall should have it's own IPs and is not transparent anymore.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?f9f38a550909120032k2572fd3y30a1a5e5d0b457cd>