Date: Sun, 28 Jun 2009 16:44:45 +0200 From: Ruben de Groot <mail25@bzerk.org> To: Anton <anton@sng.by> Cc: freebsd-questions@freebsd.org Subject: Re: IPFW: Need some help Message-ID: <20090628144445.GA69442@ei.bzerk.org> In-Reply-To: <499941928.20090628141400@sng.by> References: <499941928.20090628141400@sng.by>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, Jun 28, 2009 at 02:14:00PM +0300, Anton typed: > > Hello all, > > I'm new to *nix and now, while configuring IPFW Firewall on FreeBSD > 7.2 = has stuck in a problem: > > After packet from my network is passed to natd demon - it is returning > t= o firewall (it is normal, as I think ;-) ), but I see another > abnormal thin= g: when it is returned to firewall, it does not come > under rule which state= s to allow packet from some host in my > network, and goes under rule which a= llows packets from FreeBSD box. This is normal. That's because the source address has allready been rewritten by natd, so your rule about a specific host in your network doesn't apply anymore. Try moving this rule before the divert rule in your ipfw config. Ruben
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20090628144445.GA69442>