Date: Sun, 23 Jul 2000 01:24:48 +0300 (IDT) From: <noor@comrax.com> To: freebsd-stable@FreeBSD.ORG Subject: divert + keep-state Message-ID: <Pine.BSF.4.10.10007230120470.94646-100000@dns.comrax.com>
next in thread | raw e-mail | index | archive | help
Hi all, I have a FreeBSD box with two NIC's that I use to link our internal network to the outside network. I use ipfw+natd to do this. The following is the divert rule: add divert 8668 ip from any to any via xl1 xl1 is the outer NIC. My question is: can I do the following: add check-state add divert 8668 ip from any to any via xl1 keep-state I am trying to keep-state for diverted packets. Is this a better secured way to divert packets (if it works really), or the first should do it? Thanks, Noor To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.10.10007230120470.94646-100000>