From owner-freebsd-net@FreeBSD.ORG Thu Apr 28 19:29:13 2005 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A532E16A4CE for ; Thu, 28 Apr 2005 19:29:13 +0000 (GMT) Received: from swordfish.vsip.net (swordfish.vsip.net [205.209.169.160]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5709C43D39 for ; Thu, 28 Apr 2005 19:29:13 +0000 (GMT) (envelope-from gizmen@swordfish.vsip.net) Received: from localhost (localhost.localhost [127.0.0.1]) by swordfish.vsip.net (Postfix) with ESMTP id D212D50875 for ; Thu, 28 Apr 2005 12:39:41 -0700 (PDT) Received: from swordfish.vsip.net ([127.0.0.1]) by localhost (swordfish.vsip.net [127.0.0.1]) (amavisd-new, port 10024) with SMTP id 77864-05 for ; Thu, 28 Apr 2005 12:39:31 -0700 (PDT) Received: by swordfish.vsip.net (Postfix, from userid 1003) id C84E350868; Thu, 28 Apr 2005 12:39:31 -0700 (PDT) Date: Thu, 28 Apr 2005 12:39:31 -0700 From: GiZmen To: freebsd-net@freebsd.org Message-ID: <20050428193931.GA78277@swordfish.vsip.net> References: <20050426225230.GA61019@procent.t2.ds.pwr.wroc.pl> <20050427085629.S3686@Neo-Vortex.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20050427085629.S3686@Neo-Vortex.net> User-Agent: Mutt/1.4.2.1i X-Virus-Scanned: amavisd-new at swordfish.vsip.net Subject: Re: Changing packets ttl's X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 28 Apr 2005 19:29:13 -0000 > Do you mean the sysctl net.inet.ip.ttl? > > ~Neo-Vortex No this sysctl is not what i want. I need to change ttl of outgoing packets to my internal network. For example. There is connection from host on internet. it has for example 10 hops to my gateway. And when packet comes to my box it has for example 55 ttl in ip header. And then it is routed to host in my network so my box change ttl to 54. But what i need is change ttl to '1'. > > On Wed, 27 Apr 2005, GiZmen wrote: > > > Hi, > > > > I am searching how to change packet ttl. I am runing a freebsd 5.4 > > gateway and i would like to change ttl of any packets that are > > going out from my internal interface. My goal is to change ttl to 1 > > so the last hop is the next host in my internal network. > > I want to prevent people to do small NAT in my network. I know that > > changing ttl's is easy to bypass but not for normal user :) > > I am using pf as my packet filter but there is no option to change > > ttls to smaler value. Please help me with this problem. > > Big thanks