Date: Wed, 3 Oct 2001 19:39:59 +0100 From: setantae <setantae@submonkey.net> To: John Heyer <john@snake.supranet.net> Cc: questions@freebsd.org Subject: Re: ipfw question - network traffic to itself? Message-ID: <20011003193959.A80485@rhadamanth> In-Reply-To: <20011003121815.Q53330-100000@snake.supranet.net>; from john@snake.supranet.net on Wed, Oct 03, 2001 at 12:20:39PM -0500 References: <20011003154824.A26056@cartman.private.techsupport.co.uk> <20011003121815.Q53330-100000@snake.supranet.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Oct 03, 2001 at 12:20:39PM -0500, John Heyer wrote: > On Wed, 3 Oct 2001, Ceri wrote: > > > On Wed, Oct 03, 2001 at 09:42:29AM -0500, John Heyer said: > > > > > > I need an ipfw ruleset that will allow all traffic if it's on the same > > > network or going through the same interface, and can't figure out an easy > > > way to do this. Currently I'm just specifying the applicable networks > > > by hand: > > > > I use this : > > > > 00100 allow ip from any to any via lo0 > > 00110 allow ip from any to any via dc0 > > That allows traffic from any network to any network via its interface. I > only want to allow traffic from the network to itself via its interface. Traffic via the other interfaces (and hence other networks) is subject to the many other rules that I didn't include. As I said, it does the requested job for me; should point the OP in the right direction, at least. Ceri -- keep a mild groove on To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20011003193959.A80485>