From owner-freebsd-questions Wed Oct 3 10:20:56 2001 Delivered-To: freebsd-questions@freebsd.org Received: from snake.supranet.net (snake.supranet.net [205.164.160.19]) by hub.freebsd.org (Postfix) with ESMTP id 4DDBF37B403 for ; Wed, 3 Oct 2001 10:20:54 -0700 (PDT) Received: from localhost (john@localhost [127.0.0.1]) by snake.supranet.net (8.11.0/8.11.0) with ESMTP id f93HKds53487; Wed, 3 Oct 2001 12:20:40 -0500 (CDT) (envelope-from john@snake.supranet.net) Date: Wed, 3 Oct 2001 12:20:39 -0500 (CDT) From: John Heyer To: Ceri Cc: Subject: Re: ipfw question - network traffic to itself? In-Reply-To: <20011003154824.A26056@cartman.private.techsupport.co.uk> Message-ID: <20011003121815.Q53330-100000@snake.supranet.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Wed, 3 Oct 2001, Ceri wrote: > On Wed, Oct 03, 2001 at 09:42:29AM -0500, John Heyer said: > > > > I need an ipfw ruleset that will allow all traffic if it's on the same > > network or going through the same interface, and can't figure out an easy > > way to do this. Currently I'm just specifying the applicable networks > > by hand: > > I use this : > > 00100 allow ip from any to any via lo0 > 00110 allow ip from any to any via dc0 That allows traffic from any network to any network via its interface. I only want to allow traffic from the network to itself via its interface. -- Johh Heyer - john@personal.supranet.net - http://heyer.supranet.net "Me fail English? That's unpossible!" -- Ralph Wiggam To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message